Regenerate client from commit 5b8fcb9 of spec repo (#3422)

Co-authored-by: ci.datadog-api-spec <packages@datadoghq.com>

Author: api-clients-generation-pipeline[bot]

.generator/schemas/v2/openapi.yaml

@@ -76116,73 +76116,90 @@ components:
         - attributes
       type: object
     SecurityEntityRiskScoreAttributes:
-      description: Attributes of an entity risk score
+      description: Attributes of an entity risk score.
       properties:
+        accountIds:
+          description: Cloud account IDs associated with the entity.
+          example: ["222233334444", "3333333555555"]
+          items:
+            description: A cloud account ID.
+            type: string
+          type: array
         configRisks:
           $ref: "#/components/schemas/SecurityEntityConfigRisks"
-        entityID:
-          description: Unique identifier for the entity
-          example: "arn:aws:iam::123456789012:user/john.doe"
-          type: string
         entityMetadata:
           $ref: "#/components/schemas/SecurityEntityMetadata"
         entityName:
-          description: Human-readable name of the entity
+          description: Human-readable name of the entity.
           example: "john.doe"
           type: string
         entityProviders:
-          description: Cloud providers associated with the entity
-          example: ["aws"]
+          description: Cloud providers associated with the entity.
+          example: ["AWS"]
           items:
             description: A cloud provider name.
             type: string
           type: array
         entityRoles:
-          description: Roles associated with the entity
-          example: ["Admin", "Developer"]
+          description: Roles associated with the entity.
+          example: []
           items:
             description: A role assigned to the entity.
             type: string
           type: array
+        entitySubTypes:
+          description: Sub-types associated with the entity.
+          example: ["Root"]
+          items:
+            description: An entity sub-type label.
+            type: string
+          type: array
         entityType:
-          description: Type of the entity (e.g., aws_iam_user, aws_ec2_instance)
+          description: Type of the entity (for example, aws_iam_user, aws_ec2_instance).
           example: "aws_iam_user"
           type: string
+        entityTypes:
+          description: All types associated with the entity.
+          example: ["Root", "User Name"]
+          items:
+            description: An entity type label.
+            type: string
+          type: array
         firstDetected:
-          description: Timestamp when the entity was first detected (Unix milliseconds)
-          example: 1704067200000
+          description: Timestamp when the entity was first detected (Unix milliseconds).
+          example: 1778876604661
           format: int64
           type: integer
         lastActivityTitle:
-          description: Title of the most recent signal detected for this entity
+          description: Title of the most recent signal detected for this entity.
           example: "Suspicious API call detected"
           type: string
         lastDetected:
-          description: Timestamp when the entity was last detected (Unix milliseconds)
-          example: 1705276800000
+          description: Timestamp when the entity was last detected (Unix milliseconds).
+          example: 1780064607093
           format: int64
           type: integer
         riskScore:
-          description: Current risk score for the entity
+          description: Current risk score for the entity.
           example: 85
           format: int64
           type: integer
         riskScoreEvolution:
-          description: Change in risk score compared to previous period
+          description: Change in risk score compared to previous period.
           example: 12
           format: int64
           type: integer
         severity:
           $ref: "#/components/schemas/SecurityEntityRiskScoreAttributesSeverity"
         signalsDetected:
-          description: Number of security signals detected for this entity
+          description: Number of security signals detected for this entity.
           example: 15
           format: int64
           type: integer
       required:
-        - entityID
-        - entityType
         - entityProviders
+        - entitySubTypes
+        - accountIds
         - riskScore
         - riskScoreEvolution
         - severity
@@ -76209,11 +76226,19 @@ components:
         - MEDIUM
         - LOW
         - INFO
+    SecurityEntityRiskScoreResponse:
+      description: Response containing a single entity risk score
+      properties:
+        data:
+          $ref: "#/components/schemas/SecurityEntityRiskScore"
+      required:
+        - data
+      type: object
     SecurityEntityRiskScoreType:
-      description: Resource type
+      description: Resource type.
       enum:
-        - security_entity_risk_score
-      example: security_entity_risk_score
+        - SecurityEntityRiskScore
+      example: SecurityEntityRiskScore
       type: string
       x-enum-varnames:
         - SECURITY_ENTITY_RISK_SCORE
@@ -153097,28 +153122,34 @@ paths:
                   value:
                     data:
                       - attributes:
+                          accountIds:
+                            - "123456789012"
                           configRisks:
                             hasIdentityRisk: false
                             hasMisconfiguration: true
                             hasPrivilegedRole: false
                             isPrivileged: false
                             isProduction: true
                             isPubliclyAccessible: true
-                          entityID: "arn:aws:iam::123456789012:user/test-user"
                           entityMetadata:
                             environments:
                               - production
-                            mitreTactics: []
-                            mitreTechniques: []
+                            mitreTactics:
+                              - ta0006-credential-access
+                            mitreTechniques:
+                              - t1078-valid-accounts
                             services:
                               - api-gateway
                             sources:
                               - cloudtrail
                           entityName: test-user
                           entityProviders:
-                            - aws
+                            - AWS
                           entityRoles: []
-                          entityType: aws_iam_user
+                          entitySubTypes:
+                            - "IAM User"
+                          entityTypes:
+                            - "IAMUser"
                           firstDetected: 1704067200000
                           lastActivityTitle: "Suspicious API call detected"
                           lastDetected: 1705276800000
@@ -153127,10 +153158,12 @@ paths:
                           severity: critical
                           signalsDetected: 15
                         id: "arn:aws:iam::123456789012:user/test-user"
-                        type: security_entity_risk_score
+                        type: SecurityEntityRiskScore
                     meta:
-                      page:
-                        total: 1
+                      pageNumber: 1
+                      pageSize: 10
+                      queryId: "abc123def456"
+                      totalRowCount: 1
               schema:
                 $ref: "#/components/schemas/SecurityEntityRiskScoresResponse"
           description: OK
@@ -153160,6 +153193,100 @@ paths:
       x-unstable: |-
         **Note**: This endpoint is in public beta and it's subject to change.
         If you have any feedback, contact [Datadog support](https://docs.datadoghq.com/help/).
+  /api/v2/security-entities/risk-scores/{entity_id}:
+    get:
+      description: |-
+        Get the risk score for a specific entity by its ID. Returns security risk assessment including risk score, severity, detected signals, misconfigurations, and identity risks.
+      operationId: GetEntityRiskScore
+      parameters:
+        - description: The URL-encoded unique identifier for the entity.
+          in: path
+          name: entity_id
+          required: true
+          schema:
+            example: "arn:aws:iam::123456789012:user/john.doe"
+            type: string
+      responses:
+        "200":
+          content:
+            application/json:
+              examples:
+                default:
+                  value:
+                    data:
+                      attributes:
+                        accountIds:
+                          - "123456789012"
+                        configRisks:
+                          hasIdentityRisk: false
+                          hasMisconfiguration: true
+                          hasPrivilegedRole: false
+                          isPrivileged: false
+                          isProduction: true
+                          isPubliclyAccessible: true
+                        entityMetadata:
+                          environments:
+                            - production
+                          mitreTactics:
+                            - ta0006-credential-access
+                          mitreTechniques:
+                            - t1078-valid-accounts
+                          services:
+                            - api-gateway
+                          sources:
+                            - cloudtrail
+                        entityName: "test-user"
+                        entityProviders:
+                          - AWS
+                        entityRoles: []
+                        entitySubTypes:
+                          - "IAM User"
+                        entityTypes:
+                          - "IAMUser"
+                        firstDetected: 1704067200000
+                        lastActivityTitle: "Suspicious API call detected"
+                        lastDetected: 1705276800000
+                        riskScore: 85
+                        riskScoreEvolution: 12
+                        severity: critical
+                        signalsDetected: 15
+                      id: "arn:aws:iam::123456789012:user/test-user"
+                      type: SecurityEntityRiskScore
+              schema:
+                $ref: "#/components/schemas/SecurityEntityRiskScoreResponse"
+          description: OK
+        "400":
+          content:
+            application/json:
+              schema:
+                $ref: "#/components/schemas/JSONAPIErrorResponse"
+          description: Bad Request
+        "401":
+          content:
+            application/json:
+              schema:
+                $ref: "#/components/schemas/JSONAPIErrorResponse"
+          description: Unauthorized
+        "403":
+          content:
+            application/json:
+              schema:
+                $ref: "#/components/schemas/JSONAPIErrorResponse"
+          description: Forbidden
+        "404":
+          content:
+            application/json:
+              schema:
+                $ref: "#/components/schemas/JSONAPIErrorResponse"
+          description: Not Found
+        "429":
+          $ref: "#/components/responses/TooManyRequestsResponse"
+      summary: Get Entity Risk Score
+      tags:
+        - Entity Risk Scores
+      x-unstable: |-
+        **Note**: This endpoint is in public beta and it's subject to change.
+        If you have any feedback, contact [Datadog support](https://docs.datadoghq.com/help/).
   /api/v2/security/cloud_workload/policy/download:
     get:
       description: |-

examples/v2/entity-risk-scores/GetEntityRiskScore.rb

@@ -0,0 +1,8 @@
+# Get Entity Risk Score returns "OK" response
+
+require "datadog_api_client"
+DatadogAPIClient.configure do |config|
+  config.unstable_operations["v2.get_entity_risk_score".to_sym] = true
+end
+api_instance = DatadogAPIClient::V2::EntityRiskScoresAPI.new
+p api_instance.get_entity_risk_score("arn:aws:iam::123456789012:user/john.doe")

features/scenarios_model_mapping.rb

@@ -4786,6 +4786,9 @@
             "filter_query" => "String",
             "entity_type" => "Array<String>",
     },
+    "v2.GetEntityRiskScore" => {
+            "entity_id" => "String",
+    },
     "v2.ReorderScanningGroups" => {
             "body" => "SensitiveDataScannerConfigRequest",
     },

features/v2/entity_risk_scores.feature

@@ -6,15 +6,41 @@ Feature: Entity Risk Scores
     Given a valid "apiKeyAuth" key in the system
     And a valid "appKeyAuth" key in the system
     And an instance of "EntityRiskScores" API
-    And operation "ListEntityRiskScores" enabled
-    And new "ListEntityRiskScores" request
+
+  @generated @skip @team:DataDog/cloud-siem
+  Scenario: Get Entity Risk Score returns "Bad Request" response
+    Given operation "GetEntityRiskScore" enabled
+    And new "GetEntityRiskScore" request
+    And request contains "entity_id" parameter from "REPLACE.ME"
+    When the request is sent
+    Then the response status is 400 Bad Request
+
+  @generated @skip @team:DataDog/cloud-siem
+  Scenario: Get Entity Risk Score returns "Not Found" response
+    Given operation "GetEntityRiskScore" enabled
+    And new "GetEntityRiskScore" request
+    And request contains "entity_id" parameter from "REPLACE.ME"
+    When the request is sent
+    Then the response status is 404 Not Found
+
+  @generated @skip @team:DataDog/cloud-siem
+  Scenario: Get Entity Risk Score returns "OK" response
+    Given operation "GetEntityRiskScore" enabled
+    And new "GetEntityRiskScore" request
+    And request contains "entity_id" parameter from "REPLACE.ME"
+    When the request is sent
+    Then the response status is 200 OK
 
   @generated @skip @team:DataDog/cloud-siem
   Scenario: List Entity Risk Scores returns "Bad Request" response
+    Given operation "ListEntityRiskScores" enabled
+    And new "ListEntityRiskScores" request
     When the request is sent
     Then the response status is 400 Bad Request
 
   @generated @skip @team:DataDog/cloud-siem
   Scenario: List Entity Risk Scores returns "OK" response
+    Given operation "ListEntityRiskScores" enabled
+    And new "ListEntityRiskScores" request
     When the request is sent
     Then the response status is 200 OK

features/v2/undo.json

@@ -6396,6 +6396,12 @@
       "type": "safe"
     }
   },
+  "GetEntityRiskScore": {
+    "tag": "Entity Risk Scores",
+    "undo": {
+      "type": "safe"
+    }
+  },
   "DownloadCloudWorkloadPolicyFile": {
     "tag": "CSM Threats",
     "undo": {

lib/datadog_api_client/configuration.rb

@@ -571,6 +571,7 @@ def initialize
             "v2.query_aggregated_signals_problems": false,
             "v2.query_aggregated_waterfall": false,
             "v2.create_scorecard_outcomes_batch": false,
+            "v2.get_entity_risk_score": false,
             "v2.list_entity_risk_scores": false,
             "v2.create_incident_service": false,
             "v2.delete_incident_service": false,

lib/datadog_api_client/inflector.rb

@@ -5806,6 +5806,7 @@ def overrides
           "v2.security_entity_risk_score" => "SecurityEntityRiskScore",
           "v2.security_entity_risk_score_attributes" => "SecurityEntityRiskScoreAttributes",
           "v2.security_entity_risk_score_attributes_severity" => "SecurityEntityRiskScoreAttributesSeverity",
+          "v2.security_entity_risk_score_response" => "SecurityEntityRiskScoreResponse",
           "v2.security_entity_risk_scores_meta" => "SecurityEntityRiskScoresMeta",
           "v2.security_entity_risk_scores_response" => "SecurityEntityRiskScoresResponse",
           "v2.security_entity_risk_score_type" => "SecurityEntityRiskScoreType",