DataDog
diff --git a/‎.generator/schemas/v2/openapi.yaml‎
Lines changed: 22 additions & 82 deletions b/‎.generator/schemas/v2/openapi.yaml‎
Lines changed: 22 additions & 82 deletions
diff --git a/‎api/datadogV2/api_key_management.go‎
Lines changed: 9 additions & 9 deletions b/‎api/datadogV2/api_key_management.go‎
Lines changed: 9 additions & 9 deletions
diff --git a/‎api/datadogV2/api_security_monitoring.go‎
Lines changed: 5 additions & 4 deletions b/‎api/datadogV2/api_security_monitoring.go‎
Lines changed: 5 additions & 4 deletions
@@ -1140,9 +1140,9 @@ components:
       schema:
         type: string
     PersonalAccessTokenID:
-      description: The UUID of the personal access token.
+      description: The ID of the personal access token.
       in: path
-      name: pat_uuid
+      name: pat_id
       required: true
       schema:
         example: "00000000-0000-1234-0000-000000000000"
@@ -29180,11 +29180,6 @@ components:
     FullPersonalAccessTokenAttributes:
       description: Attributes of a full personal access token, including the token key.
       properties:
-        alias:
-          description: The alias (short identifier) of the personal access token.
-          example: "2H9MCNMBM8FQjQ16YucXkX"
-          readOnly: true
-          type: string
         created_at:
           description: Creation date of the personal access token.
           example: "2024-01-01T00:00:00+00:00"
@@ -53415,11 +53410,6 @@ components:
     PersonalAccessTokenAttributes:
       description: Attributes of a personal access token.
       properties:
-        alias:
-          description: The alias (short identifier) of the personal access token.
-          example: "2H9MCNMBM8FQjQ16YucXkX"
-          readOnly: true
-          type: string
         created_at:
           description: Creation date of the personal access token.
           example: "2024-01-01T00:00:00+00:00"
@@ -62654,23 +62644,19 @@ components:
         - DONE
         - TIMEOUT
     SecurityMonitoringContentPackActivation:
-      description: The activation status of a content pack.
+      description: The activation status of a content pack
       enum:
         - never_activated
         - activated
         - deactivated
       example: activated
       type: string
-      x-enum-descriptions:
-        - Pack has never been activated for this organization.
-        - Pack is currently activated.
-        - Pack was previously activated but has since been deactivated.
       x-enum-varnames:
         - NEVER_ACTIVATED
         - ACTIVATED
         - DEACTIVATED
     SecurityMonitoringContentPackIntegrationStatus:
-      description: The installation status of the related integration.
+      description: The installation status of the related integration
       enum:
         - installed
         - available
@@ -62679,12 +62665,6 @@ components:
         - error
       example: installed
       type: string
-      x-enum-descriptions:
-        - Integration is fully installed.
-        - Integration exists in the catalog but is not installed.
-        - Integration is only partially configured.
-        - Integration detected (for example, logs are flowing) but not explicitly installed.
-        - Integration is in an error state.
       x-enum-varnames:
         - INSTALLED
         - AVAILABLE
@@ -62701,17 +62681,15 @@ components:
         cp_activation:
           $ref: "#/components/schemas/SecurityMonitoringContentPackActivation"
         filters_configured_for_logs:
-          description: |-
-            Whether filters (Security Filters or Index Query depending on the pricing model) are
-            present and correctly configured to route logs into Cloud SIEM.
+          description: Whether filters (Security Filters or Index Query depending on the pricing model) are configured for logs
           example: true
           type: boolean
         integration_installed_status:
           $ref: "#/components/schemas/SecurityMonitoringContentPackIntegrationStatus"
         logs_last_collected:
           $ref: "#/components/schemas/SecurityMonitoringContentPackTimestampBucket"
         logs_seen_from_any_index:
-          description: Whether logs for this content pack have been seen in any Datadog index within the last 72 hours.
+          description: Whether logs have been seen from any index
           example: true
           type: boolean
         state:
@@ -62776,7 +62754,7 @@ components:
         - meta
       type: object
     SecurityMonitoringContentPackStatus:
-      description: The current operational status of a content pack.
+      description: The current status of a content pack
       enum:
         - install
         - activate
@@ -62786,13 +62764,6 @@ components:
         - broken
       example: active
       type: string
-      x-enum-descriptions:
-        - Not activated; no logs detected in the last 72 hours.
-        - Not activated; logs are flowing into a Datadog index but not yet routed through Cloud SIEM.
-        - Activated; awaiting first log ingestion.
-        - Activated; logs received within the last 24 hours.
-        - Activated; integration not installed or logs last seen 24 to 72 hours ago.
-        - Activated; no logs for over 72 hours, filter missing, or Cloud SIEM index incorrectly ordered.
       x-enum-varnames:
         - INSTALL
         - ACTIVATE
@@ -62801,7 +62772,7 @@ components:
         - WARNING
         - BROKEN
     SecurityMonitoringContentPackTimestampBucket:
-      description: Timestamp bucket indicating when logs were last collected.
+      description: Timestamp bucket indicating when logs were last collected
       enum:
         - not_seen
         - within_24_hours
@@ -62810,12 +62781,6 @@ components:
         - over_30d
       example: within_24_hours
       type: string
-      x-enum-descriptions:
-        - No logs observed.
-        - Logs received within the last 24 hours.
-        - Logs last seen 24 to 72 hours ago.
-        - Logs last seen 3 to 30 days ago.
-        - Logs last seen more than 30 days ago.
       x-enum-varnames:
         - NOT_SEEN
         - WITHIN_24_HOURS
@@ -63906,7 +63871,7 @@ components:
         - $ref: "#/components/schemas/SecurityMonitoringSignalRulePayload"
         - $ref: "#/components/schemas/CloudConfigurationRulePayload"
     SecurityMonitoringSKU:
-      description: The Cloud SIEM pricing model (SKU) for the organization.
+      description: The SIEM pricing model (SKU) for the organization
       enum:
         - per_gb_analyzed
         - per_event_in_siem_index_2023
@@ -77965,6 +77930,10 @@ components:
           description: Title of the user.
           nullable: true
           type: string
+        uuid:
+          description: UUID of the user.
+          readOnly: true
+          type: string
         verified:
           description: Whether the user is verified.
           type: boolean
@@ -109511,7 +109480,7 @@ paths:
         operator: OR
         permissions:
           - user_app_keys
-  /api/v2/personal_access_tokens/{pat_uuid}:
+  /api/v2/personal_access_tokens/{pat_id}:
     delete:
       description: Revoke a specific personal access token.
       operationId: RevokePersonalAccessToken
@@ -118729,8 +118698,9 @@ paths:
   /api/v2/security_monitoring/content_packs/states:
     get:
       description: |-
-        Get the activation state, integration status, and log collection status
-        for all Cloud SIEM content packs.
+        Get the activation and configuration states for all security monitoring content packs.
+        This endpoint returns status information about each content pack including activation state,
+        integration status, and log collection status.
       operationId: GetContentPacksStates
       responses:
         "200":
@@ -118753,31 +118723,21 @@ paths:
           description: Not Found
         "429":
           $ref: "#/components/responses/TooManyRequestsResponse"
-      security:
-        - apiKeyAuth: []
-          appKeyAuth: []
-        - AuthZ:
-            - security_monitoring_filters_read
       summary: Get content pack states
       tags:
         - Security Monitoring
-      "x-permission":
-        operator: OR
-        permissions:
-          - security_monitoring_filters_read
-          - logs_read_index_data
       x-unstable: |-
         **Note**: This endpoint is in preview and is subject to change.
         If you have any feedback, contact [Datadog support](https://docs.datadoghq.com/help/).
   /api/v2/security_monitoring/content_packs/{content_pack_id}/activate:
     put:
       description: |-
-        Activate a Cloud SIEM content pack. This operation configures the necessary
+        Activate a security monitoring content pack. This operation configures the necessary
         log filters or security filters depending on the pricing model and updates the content
         pack activation state.
       operationId: ActivateContentPack
       parameters:
-        - description: The ID of the content pack to activate (for example, `aws-cloudtrail`).
+        - description: The ID of the content pack to activate.
           in: path
           name: content_pack_id
           required: true
@@ -118801,30 +118761,20 @@ paths:
           description: Not Found
         "429":
           $ref: "#/components/responses/TooManyRequestsResponse"
-      security:
-        - apiKeyAuth: []
-          appKeyAuth: []
-        - AuthZ:
-            - security_monitoring_filters_write
       summary: Activate content pack
       tags:
         - Security Monitoring
-      "x-permission":
-        operator: OR
-        permissions:
-          - security_monitoring_filters_write
-          - logs_modify_indexes
       x-unstable: |-
         **Note**: This endpoint is in preview and is subject to change.
         If you have any feedback, contact [Datadog support](https://docs.datadoghq.com/help/).
   /api/v2/security_monitoring/content_packs/{content_pack_id}/deactivate:
     put:
       description: |-
-        Deactivate a Cloud SIEM content pack. This operation removes the content pack's
+        Deactivate a security monitoring content pack. This operation removes the content pack's
         configuration from log filters or security filters and updates the content pack activation state.
       operationId: DeactivateContentPack
       parameters:
-        - description: The ID of the content pack to deactivate (for example, `aws-cloudtrail`).
+        - description: The ID of the content pack to deactivate.
           in: path
           name: content_pack_id
           required: true
@@ -118848,19 +118798,9 @@ paths:
           description: Not Found
         "429":
           $ref: "#/components/responses/TooManyRequestsResponse"
-      security:
-        - apiKeyAuth: []
-          appKeyAuth: []
-        - AuthZ:
-            - security_monitoring_filters_write
       summary: Deactivate content pack
       tags:
         - Security Monitoring
-      "x-permission":
-        operator: OR
-        permissions:
-          - security_monitoring_filters_write
-          - logs_modify_indexes
       x-unstable: |-
         **Note**: This endpoint is in preview and is subject to change.
         If you have any feedback, contact [Datadog support](https://docs.datadoghq.com/help/).
@@ -120937,7 +120877,7 @@ paths:
         operator: OR
         permissions:
           - service_account_write
-  /api/v2/service_accounts/{service_account_id}/access_tokens/{pat_uuid}:
+  /api/v2/service_accounts/{service_account_id}/access_tokens/{pat_id}:
     delete:
       description: Revoke a specific access token for a service account.
       operationId: RevokeServiceAccountAccessToken
 
@@ -753,7 +753,7 @@ func (a *KeyManagementApi) GetCurrentUserApplicationKey(ctx _context.Context, ap
 
 // GetPersonalAccessToken Get a personal access token.
 // Get a specific personal access token by its UUID.
-func (a *KeyManagementApi) GetPersonalAccessToken(ctx _context.Context, patUuid string) (PersonalAccessTokenResponse, *_nethttp.Response, error) {
+func (a *KeyManagementApi) GetPersonalAccessToken(ctx _context.Context, patId string) (PersonalAccessTokenResponse, *_nethttp.Response, error) {
 	var (
 		localVarHTTPMethod  = _nethttp.MethodGet
 		localVarPostBody    interface{}
@@ -765,8 +765,8 @@ func (a *KeyManagementApi) GetPersonalAccessToken(ctx _context.Context, patUuid
 		return localVarReturnValue, nil, datadog.GenericOpenAPIError{ErrorMessage: err.Error()}
 	}
 
-	localVarPath := localBasePath + "/api/v2/personal_access_tokens/{pat_uuid}"
-	localVarPath = datadog.ReplacePathParameter(localVarPath, "{pat_uuid}", _neturl.PathEscape(datadog.ParameterToString(patUuid, "")))
+	localVarPath := localBasePath + "/api/v2/personal_access_tokens/{pat_id}"
+	localVarPath = datadog.ReplacePathParameter(localVarPath, "{pat_id}", _neturl.PathEscape(datadog.ParameterToString(patId, "")))
 
 	localVarHeaderParams := make(map[string]string)
 	localVarQueryParams := _neturl.Values{}
@@ -1519,7 +1519,7 @@ func (a *KeyManagementApi) ListPersonalAccessTokens(ctx _context.Context, o ...L
 
 // RevokePersonalAccessToken Revoke a personal access token.
 // Revoke a specific personal access token.
-func (a *KeyManagementApi) RevokePersonalAccessToken(ctx _context.Context, patUuid string) (*_nethttp.Response, error) {
+func (a *KeyManagementApi) RevokePersonalAccessToken(ctx _context.Context, patId string) (*_nethttp.Response, error) {
 	var (
 		localVarHTTPMethod = _nethttp.MethodDelete
 		localVarPostBody   interface{}
@@ -1530,8 +1530,8 @@ func (a *KeyManagementApi) RevokePersonalAccessToken(ctx _context.Context, patUu
 		return nil, datadog.GenericOpenAPIError{ErrorMessage: err.Error()}
 	}
 
-	localVarPath := localBasePath + "/api/v2/personal_access_tokens/{pat_uuid}"
-	localVarPath = datadog.ReplacePathParameter(localVarPath, "{pat_uuid}", _neturl.PathEscape(datadog.ParameterToString(patUuid, "")))
+	localVarPath := localBasePath + "/api/v2/personal_access_tokens/{pat_id}"
+	localVarPath = datadog.ReplacePathParameter(localVarPath, "{pat_id}", _neturl.PathEscape(datadog.ParameterToString(patId, "")))
 
 	localVarHeaderParams := make(map[string]string)
 	localVarQueryParams := _neturl.Values{}
@@ -1831,7 +1831,7 @@ func (a *KeyManagementApi) UpdateCurrentUserApplicationKey(ctx _context.Context,
 
 // UpdatePersonalAccessToken Update a personal access token.
 // Update a specific personal access token.
-func (a *KeyManagementApi) UpdatePersonalAccessToken(ctx _context.Context, patUuid string, body PersonalAccessTokenUpdateRequest) (PersonalAccessTokenResponse, *_nethttp.Response, error) {
+func (a *KeyManagementApi) UpdatePersonalAccessToken(ctx _context.Context, patId string, body PersonalAccessTokenUpdateRequest) (PersonalAccessTokenResponse, *_nethttp.Response, error) {
 	var (
 		localVarHTTPMethod  = _nethttp.MethodPatch
 		localVarPostBody    interface{}
@@ -1843,8 +1843,8 @@ func (a *KeyManagementApi) UpdatePersonalAccessToken(ctx _context.Context, patUu
 		return localVarReturnValue, nil, datadog.GenericOpenAPIError{ErrorMessage: err.Error()}
 	}
 
-	localVarPath := localBasePath + "/api/v2/personal_access_tokens/{pat_uuid}"
-	localVarPath = datadog.ReplacePathParameter(localVarPath, "{pat_uuid}", _neturl.PathEscape(datadog.ParameterToString(patUuid, "")))
+	localVarPath := localBasePath + "/api/v2/personal_access_tokens/{pat_id}"
+	localVarPath = datadog.ReplacePathParameter(localVarPath, "{pat_id}", _neturl.PathEscape(datadog.ParameterToString(patId, "")))
 
 	localVarHeaderParams := make(map[string]string)
 	localVarQueryParams := _neturl.Values{}
 
@@ -21,7 +21,7 @@ import (
 type SecurityMonitoringApi datadog.Service
 
 // ActivateContentPack Activate content pack.
-// Activate a Cloud SIEM content pack. This operation configures the necessary
+// Activate a security monitoring content pack. This operation configures the necessary
 // log filters or security filters depending on the pricing model and updates the content
 // pack activation state.
 func (a *SecurityMonitoringApi) ActivateContentPack(ctx _context.Context, contentPackId string) (*_nethttp.Response, error) {
@@ -1844,7 +1844,7 @@ func (a *SecurityMonitoringApi) CreateVulnerabilityNotificationRule(ctx _context
 }
 
 // DeactivateContentPack Deactivate content pack.
-// Deactivate a Cloud SIEM content pack. This operation removes the content pack's
+// Deactivate a security monitoring content pack. This operation removes the content pack's
 // configuration from log filters or security filters and updates the content pack activation state.
 func (a *SecurityMonitoringApi) DeactivateContentPack(ctx _context.Context, contentPackId string) (*_nethttp.Response, error) {
 	var (
@@ -2989,8 +2989,9 @@ func (a *SecurityMonitoringApi) ExportSecurityMonitoringTerraformResource(ctx _c
 }
 
 // GetContentPacksStates Get content pack states.
-// Get the activation state, integration status, and log collection status
-// for all Cloud SIEM content packs.
+// Get the activation and configuration states for all security monitoring content packs.
+// This endpoint returns status information about each content pack including activation state,
+// integration status, and log collection status.
 func (a *SecurityMonitoringApi) GetContentPacksStates(ctx _context.Context) (SecurityMonitoringContentPackStatesResponse, *_nethttp.Response, error) {
 	var (
 		localVarHTTPMethod  = _nethttp.MethodGet