Module Awso_securityhub_lwtSource

include module type of struct include Awso_securityhub.Values end
Sourceval service : Awso.Service.t
Sourceval apiVersion : string
Sourceval endpointPrefix : string
Sourceval serviceFullName : string
Sourceval signatureVersion : string
Sourceval protocol : string
Sourceval globalEndpoint : string
Sourceval simple_to_json : ('a -> Awso__Botodata.value) -> 'a -> Yojson.Safe.t
Sourceval composed_to_json : ('a -> Awso__Botodata.value) -> 'a -> Yojson.Safe.t
Sourceval to_query : ('a -> Awso.Client.Query.value) -> 'a -> Awso.Client.Query.t
Sourceval structure_to_value_aux : ('a * 'b option) list -> f:(('a * 'b) list -> 'c) -> [> `Structure of 'c ]
Sourceval structure_to_value : ('a * 'b option) list -> [> `Structure of ('a * 'b) list ]
Sourceval structure_to_wrapped_value : wrapper:'a -> response:'a -> ('b * 'c option) list -> [> `Structure of ('a * [> `Structure of ('b * 'c) list ]) list ]
Sourcemodule AcceptAdministratorInvitationRequest = Awso_securityhub.Values.AcceptAdministratorInvitationRequest

We recommend using Organizations instead of Security Hub CSPM invitations to manage your member accounts. For information, see Managing Security Hub CSPM administrator and member accounts with Organizations in the Security Hub CSPM User Guide. Accepts the invitation to be a member account and be monitored by the Security Hub CSPM administrator account that the invitation was sent from. This operation is only used by member accounts that are not added through Organizations. When the member account accepts the invitation, permission is granted to the administrator account to view findings generated in the member account.

The request was rejected because we can't find the specified resource.

The request was rejected because it attempted to create resources beyond the current Amazon Web Services account or throttling limits. The error code describes the limit exceeded.

The request was rejected because you supplied an invalid or out-of-range value for an input parameter.

The account doesn't have permission to perform this action.

Internal server error.

Sourcemodule AcceptAdministratorInvitationResponse = Awso_securityhub.Values.AcceptAdministratorInvitationResponse

We recommend using Organizations instead of Security Hub CSPM invitations to manage your member accounts. For information, see Managing Security Hub CSPM administrator and member accounts with Organizations in the Security Hub CSPM User Guide. Accepts the invitation to be a member account and be monitored by the Security Hub CSPM administrator account that the invitation was sent from. This operation is only used by member accounts that are not added through Organizations. When the member account accepts the invitation, permission is granted to the administrator account to view findings generated in the member account.

This method is deprecated. Instead, use AcceptAdministratorInvitation. The Security Hub CSPM console continues to use AcceptInvitation. It will eventually change to use AcceptAdministratorInvitation. Any IAM policies that specifically control access to this function must continue to use AcceptInvitation. You should also add AcceptAdministratorInvitation to your policies to ensure that the correct permissions are in place after the console begins to use AcceptAdministratorInvitation. Accepts the invitation to be a member account and be monitored by the Security Hub CSPM administrator account that the invitation was sent from. This operation is only used by member accounts that are not added through Organizations. When the member account accepts the invitation, permission is granted to the administrator account to view findings generated in the member account.

This method is deprecated. Instead, use AcceptAdministratorInvitation. The Security Hub CSPM console continues to use AcceptInvitation. It will eventually change to use AcceptAdministratorInvitation. Any IAM policies that specifically control access to this function must continue to use AcceptInvitation. You should also add AcceptAdministratorInvitation to your policies to ensure that the correct permissions are in place after the console begins to use AcceptAdministratorInvitation. Accepts the invitation to be a member account and be monitored by the Security Hub CSPM administrator account that the invitation was sent from. This operation is only used by member accounts that are not added through Organizations. When the member account accepts the invitation, permission is granted to the administrator account to view findings generated in the member account.

You don't have permission to perform the action specified in the request.

The details of an Amazon Web Services account.

Provides information about an internet provider.

Provides the latitude and longitude coordinates of a location.

Information about a country.

Information about a city.

For AwsApiAction, NetworkConnectionAction, and PortProbeAction, RemoteIpDetails provides information about the remote IP address that was involved in the action.

For NetworkConnectionAction and PortProbeDetails, LocalPortDetails provides information about the local port that was involved in the action.

Provides information about the IP address where the scanned port is located.

A port scan that was part of the port probe. For each scan, PortProbeDetails provides information about the local IP address and port that were scanned, and the remote IP address that the scan originated from.

Provided if ActionType is PORT_PROBE. It provides details about the attempted port probe that was detected.

Provides information about the remote port that was involved in an attempted network connection.

Provided if ActionType is NETWORK_CONNECTION. It provides details about the attempted network connection that was detected.

Provided if ActionType is DNS_REQUEST. It provides details about the DNS request that was detected.

Provided if CallerType is domain. It provides information about the DNS domain that issued the API call.

Provided if ActionType is AWS_API_CALL. It provides details about the API call that was detected.

Provides details about one of the following actions that affects or that was taken on a resource: A remote IP address issued an Amazon Web Services API call A DNS request was received A remote IP address attempted to connect to an EC2 instance A remote IP address attempted a port probe on an EC2 instance

Used to update information about the investigation into the finding.

Updates to the severity information for a finding.

Details about a related finding.

The updated note.

Sourcemodule AutomationRulesFindingFieldsUpdate = Awso_securityhub.Values.AutomationRulesFindingFieldsUpdate

Identifies the finding fields that the automation rule action updates when a finding matches the defined criteria.

One or more actions that Security Hub CSPM takes when a finding matches the defined criteria of a rule.

An ActionTarget object.

Provides Amazon Web Services account information of the user involved in an Amazon GuardDuty Extended Threat Detection attack sequence. GuardDuty generates an attack sequence finding when multiple events align to a potentially suspicious activity. To receive GuardDuty attack sequence findings in Security Hub CSPM, you must have GuardDuty enabled. For more information, see GuardDuty Extended Threat Detection in the Amazon GuardDuty User Guide.

Contains information about the credentials used by the threat actor identified in an Amazon GuardDuty Extended Threat Detection attack sequence. GuardDuty generates an attack sequence finding when multiple events align to a potentially suspicious activity. To receive GuardDuty attack sequence findings in Security Hub CSPM, you must have GuardDuty enabled. For more information, see GuardDuty Extended Threat Detection in the Amazon GuardDuty User Guide.

Contains information about the authenticated session used by the threat actor identified in an Amazon GuardDuty Extended Threat Detection attack sequence. GuardDuty generates an attack sequence finding when multiple events align to a potentially suspicious activity. To receive GuardDuty attack sequence findings in Security Hub CSPM, you must have GuardDuty enabled. For more information, see GuardDuty Extended Threat Detection in the Amazon GuardDuty User Guide.

Information about the threat actor identified in an Amazon GuardDuty Extended Threat Detection attack sequence. GuardDuty generates an attack sequence finding when multiple events align to a potentially suspicious activity. To receive GuardDuty attack sequence findings in Security Hub CSPM, you must have GuardDuty enabled. For more information, see GuardDuty Extended Threat Detection in the Amazon GuardDuty User Guide.

An adjustment to the CVSS metric.

Represents a Security Hub CSPM administrator account designated by an organization management account.

Specifies a cross-Region data aggregation configuration, including the aggregation Region and any linked Regions.

Information about an enabled security standard in which a security control is enabled.

Sourcemodule ConfigurationPolicyAssociationStatus = Awso_securityhub.Values.ConfigurationPolicyAssociationStatus

Options for filtering the ListConfigurationPolicyAssociations response. You can filter by the Amazon Resource Name (ARN) or universally unique identifier (UUID) of a configuration policy, AssociationType, or AssociationStatus.

Describes the state of an association between a route table and a subnet or gateway.

The associations between a route table and one or more subnets or a gateway.

Sourcemodule ExternalIntegrationConfiguration = Awso_securityhub.Values.ExternalIntegrationConfiguration

Defines the settings and parameters required for integrating external security tools and services.

Sourcemodule AutomationRulesFindingFieldsUpdateV2 = Awso_securityhub.Values.AutomationRulesFindingFieldsUpdateV2

Allows you to define the structure for modifying specific fields in security findings.

Allows you to configure automated responses.

Sourcemodule AutomationRulesActionTypeObjectV2 = Awso_securityhub.Values.AutomationRulesActionTypeObjectV2

Allows you to customize security response workflows.

Sourcemodule AutomationRulesActionTypeListV2 = Awso_securityhub.Values.AutomationRulesActionTypeListV2

A string filter for filtering Security Hub CSPM findings.

A number filter for querying findings.

A map filter for filtering Security Hub CSPM findings. Each map filter provides the field to check for, the value to check for, and the comparison operator.

A date range for the date filter.

A date filter for querying findings.

The criteria that determine which findings a rule applies to.

Defines the configuration of an automation rule.

Metadata for automation rules in the calling account. The response includes rules with a RuleStatus of ENABLED and DISABLED.

Includes essential metadata information about automation rules.

Information about an Availability Zone.

Provides details about the broker usernames for the specified broker. Doesn't apply to RabbitMQ brokers.

Sourcemodule AwsAmazonMqBrokerMaintenanceWindowStartTimeDetails = Awso_securityhub.Values.AwsAmazonMqBrokerMaintenanceWindowStartTimeDetails

The scheduled time period (UTC) during which Amazon MQ begins to apply pending updates or patches to the broker.

Sourcemodule AwsAmazonMqBrokerLogsPendingDetails = Awso_securityhub.Values.AwsAmazonMqBrokerLogsPendingDetails

Provides information about logs to be activated for the specified broker.

Provides information about logs to be activated for the specified broker.

Sourcemodule AwsAmazonMqBrokerLdapServerMetadataDetails = Awso_securityhub.Values.AwsAmazonMqBrokerLdapServerMetadataDetails

The metadata of the Lightweight Directory Access Protocol (LDAP) server used to authenticate and authorize connections to the broker. This is an optional failover server.

Sourcemodule AwsAmazonMqBrokerEncryptionOptionsDetails = Awso_securityhub.Values.AwsAmazonMqBrokerEncryptionOptionsDetails

Provides details about broker encryption options.

Provides details about an Amazon MQ message broker. A message broker allows software applications and components to communicate using various programming languages, operating systems, and formal messaging protocols.

Sourcemodule AwsApiGatewayAccessLogSettings = Awso_securityhub.Values.AwsApiGatewayAccessLogSettings

Contains information about settings for logging access for the stage.

Contains information about settings for canary deployment in the stage.

Sourcemodule AwsApiGatewayEndpointConfiguration = Awso_securityhub.Values.AwsApiGatewayEndpointConfiguration

Contains information about the endpoints for the API.

Defines settings for a method for the stage.

Sourcemodule AwsApiGatewayMethodSettingsList = Awso_securityhub.Values.AwsApiGatewayMethodSettingsList

Contains information about a REST API in version 1 of Amazon API Gateway.

Provides information about a version 1 Amazon API Gateway stage.

Contains the cross-origin resource sharing (CORS) configuration for the API. CORS is only supported for HTTP APIs.

Contains information about a version 2 API in Amazon API Gateway.

Contains route settings for a stage.

Contains information about a version 2 stage for Amazon API Gateway.

Sourcemodule AwsAppSyncGraphQlApiUserPoolConfigDetails = Awso_securityhub.Values.AwsAppSyncGraphQlApiUserPoolConfigDetails

Specifies the authorization configuration for using Amazon Cognito user pools with your AppSync GraphQL API endpoint.

Sourcemodule AwsAppSyncGraphQlApiOpenIdConnectConfigDetails = Awso_securityhub.Values.AwsAppSyncGraphQlApiOpenIdConnectConfigDetails

Specifies the authorization configuration for using an OpenID Connect compliant service with your AppSync GraphQL API endpoint.

Sourcemodule AwsAppSyncGraphQlApiLambdaAuthorizerConfigDetails = Awso_securityhub.Values.AwsAppSyncGraphQlApiLambdaAuthorizerConfigDetails

Specifies the authorization configuration for using an Lambda function with your AppSync GraphQL API endpoint.

Sourcemodule AwsAppSyncGraphQlApiAdditionalAuthenticationProvidersDetails = Awso_securityhub.Values.AwsAppSyncGraphQlApiAdditionalAuthenticationProvidersDetails

A list of additional authentication providers for the GraphqlApi API.

Sourcemodule AwsAppSyncGraphQlApiAdditionalAuthenticationProvidersList = Awso_securityhub.Values.AwsAppSyncGraphQlApiAdditionalAuthenticationProvidersList
Sourcemodule AwsAppSyncGraphQlApiLogConfigDetails = Awso_securityhub.Values.AwsAppSyncGraphQlApiLogConfigDetails

Specifies the logging configuration when writing GraphQL operations and tracing to Amazon CloudWatch for an AppSync GraphQL API.

Provides details about an AppSync Graph QL API, which lets you query multiple databases, microservices, and APIs from a single GraphQL endpoint.

Sourcemodule AwsAthenaWorkGroupConfigurationResultConfigurationEncryptionConfigurationDetails = Awso_securityhub.Values.AwsAthenaWorkGroupConfigurationResultConfigurationEncryptionConfigurationDetails

Specifies the method used to encrypt the user’s data stores in the Athena workgroup.

Sourcemodule AwsAthenaWorkGroupConfigurationResultConfigurationDetails = Awso_securityhub.Values.AwsAthenaWorkGroupConfigurationResultConfigurationDetails

The location in Amazon Simple Storage Service (Amazon S3) where query and calculation results are stored and the encryption option, if any, used for query and calculation results. These are known as client-side settings. If workgroup settings override client-side settings, then the query uses the workgroup settings.

Sourcemodule AwsAthenaWorkGroupConfigurationDetails = Awso_securityhub.Values.AwsAthenaWorkGroupConfigurationDetails

The configuration of the workgroup, which includes the location in Amazon Simple Storage Service (Amazon S3) where query results are stored, the encryption option, if any, used for query results, whether Amazon CloudWatch metrics are enabled for the workgroup, and the limit for the amount of bytes scanned (cutoff) per query, if it is specified.

Provides information about an Amazon Athena workgroup.

Sourcemodule AwsAutoScalingAutoScalingGroupAvailabilityZonesListDetails = Awso_securityhub.Values.AwsAutoScalingAutoScalingGroupAvailabilityZonesListDetails

An Availability Zone for the automatic scaling group.

Sourcemodule AwsAutoScalingAutoScalingGroupAvailabilityZonesList = Awso_securityhub.Values.AwsAutoScalingAutoScalingGroupAvailabilityZonesList
Sourcemodule AwsAutoScalingAutoScalingGroupMixedInstancesPolicyLaunchTemplateOverridesListDetails = Awso_securityhub.Values.AwsAutoScalingAutoScalingGroupMixedInstancesPolicyLaunchTemplateOverridesListDetails

Property values to use to override the values in the launch template.

Sourcemodule AwsAutoScalingAutoScalingGroupMixedInstancesPolicyLaunchTemplateOverridesList = Awso_securityhub.Values.AwsAutoScalingAutoScalingGroupMixedInstancesPolicyLaunchTemplateOverridesList
Sourcemodule AwsAutoScalingAutoScalingGroupMixedInstancesPolicyLaunchTemplateLaunchTemplateSpecification = Awso_securityhub.Values.AwsAutoScalingAutoScalingGroupMixedInstancesPolicyLaunchTemplateLaunchTemplateSpecification

Details about the launch template to use for a mixed instances policy.

Sourcemodule AwsAutoScalingAutoScalingGroupMixedInstancesPolicyLaunchTemplateDetails = Awso_securityhub.Values.AwsAutoScalingAutoScalingGroupMixedInstancesPolicyLaunchTemplateDetails

Describes a launch template and overrides for a mixed instances policy.

Sourcemodule AwsAutoScalingAutoScalingGroupMixedInstancesPolicyInstancesDistributionDetails = Awso_securityhub.Values.AwsAutoScalingAutoScalingGroupMixedInstancesPolicyInstancesDistributionDetails

Information about the instances distribution.

Sourcemodule AwsAutoScalingAutoScalingGroupMixedInstancesPolicyDetails = Awso_securityhub.Values.AwsAutoScalingAutoScalingGroupMixedInstancesPolicyDetails

The mixed instances policy for the automatic scaling group.

Sourcemodule AwsAutoScalingAutoScalingGroupLaunchTemplateLaunchTemplateSpecification = Awso_securityhub.Values.AwsAutoScalingAutoScalingGroupLaunchTemplateLaunchTemplateSpecification

Details about the launch template to use.

Sourcemodule AwsAutoScalingAutoScalingGroupDetails = Awso_securityhub.Values.AwsAutoScalingAutoScalingGroupDetails

Provides details about an auto scaling group.

Sourcemodule AwsAutoScalingLaunchConfigurationBlockDeviceMappingsEbsDetails = Awso_securityhub.Values.AwsAutoScalingLaunchConfigurationBlockDeviceMappingsEbsDetails

Parameters that are used to automatically set up EBS volumes when an instance is launched.

Sourcemodule AwsAutoScalingLaunchConfigurationBlockDeviceMappingsDetails = Awso_securityhub.Values.AwsAutoScalingLaunchConfigurationBlockDeviceMappingsDetails

A block device for the instance.

Sourcemodule AwsAutoScalingLaunchConfigurationBlockDeviceMappingsList = Awso_securityhub.Values.AwsAutoScalingLaunchConfigurationBlockDeviceMappingsList
Sourcemodule AwsAutoScalingLaunchConfigurationMetadataOptions = Awso_securityhub.Values.AwsAutoScalingLaunchConfigurationMetadataOptions

The metadata options for the instances.

Sourcemodule AwsAutoScalingLaunchConfigurationInstanceMonitoringDetails = Awso_securityhub.Values.AwsAutoScalingLaunchConfigurationInstanceMonitoringDetails

Information about the type of monitoring for instances in the group.

Sourcemodule AwsAutoScalingLaunchConfigurationDetails = Awso_securityhub.Values.AwsAutoScalingLaunchConfigurationDetails

Details about a launch configuration.

Sourcemodule AwsBackupBackupPlanAdvancedBackupSettingsDetails = Awso_securityhub.Values.AwsBackupBackupPlanAdvancedBackupSettingsDetails

Provides a list of backup options for each resource type.

Sourcemodule AwsBackupBackupPlanAdvancedBackupSettingsList = Awso_securityhub.Values.AwsBackupBackupPlanAdvancedBackupSettingsList
Sourcemodule AwsBackupBackupPlanLifecycleDetails = Awso_securityhub.Values.AwsBackupBackupPlanLifecycleDetails

Provides lifecycle details for the backup plan. A lifecycle defines when a backup is transitioned to cold storage and when it expires.

Sourcemodule AwsBackupBackupPlanRuleCopyActionsDetails = Awso_securityhub.Values.AwsBackupBackupPlanRuleCopyActionsDetails

An array of CopyAction objects, each of which contains details of the copy operation.

Sourcemodule AwsBackupBackupPlanRuleCopyActionsList = Awso_securityhub.Values.AwsBackupBackupPlanRuleCopyActionsList
Sourcemodule AwsBackupBackupPlanRuleDetails = Awso_securityhub.Values.AwsBackupBackupPlanRuleDetails

Provides details about an array of BackupRule objects, each of which specifies a scheduled task that is used to back up a selection of resources.

Sourcemodule AwsBackupBackupPlanBackupPlanDetails = Awso_securityhub.Values.AwsBackupBackupPlanBackupPlanDetails

Provides details about an Backup backup plan and an array of BackupRule objects, each of which specifies a backup rule.

Provides details about an Backup backup plan and an array of BackupRule objects, each of which specifies a backup rule.

Sourcemodule AwsBackupBackupVaultNotificationsDetails = Awso_securityhub.Values.AwsBackupBackupVaultNotificationsDetails

Provides details about the Amazon SNS event notifications for the specified backup vault.

Provides details about an Backup backup vault. In Backup, a backup vault is a container that stores and organizes your backups.

Sourcemodule AwsBackupRecoveryPointCalculatedLifecycleDetails = Awso_securityhub.Values.AwsBackupRecoveryPointCalculatedLifecycleDetails

Specifies how long in days before a recovery point transitions to cold storage or is deleted.

Sourcemodule AwsBackupRecoveryPointCreatedByDetails = Awso_securityhub.Values.AwsBackupRecoveryPointCreatedByDetails

Contains information about the backup plan and rule that Backup used to initiate the recovery point backup.

Sourcemodule AwsBackupRecoveryPointLifecycleDetails = Awso_securityhub.Values.AwsBackupRecoveryPointLifecycleDetails

Contains an array of Transition objects specifying how long in days before a recovery point transitions to cold storage or is deleted.

Contains detailed information about the recovery points stored in an Backup backup vault. A backup, or recovery point, represents the content of a resource at a specified time.

Sourcemodule AwsCertificateManagerCertificateResourceRecord = Awso_securityhub.Values.AwsCertificateManagerCertificateResourceRecord

Provides details about the CNAME record that is added to the DNS database for domain validation.

Sourcemodule AwsCertificateManagerCertificateDomainValidationOption = Awso_securityhub.Values.AwsCertificateManagerCertificateDomainValidationOption

Contains information about one of the following: The initial validation of each domain name that occurs as a result of the RequestCertificate request The validation of each domain name in the certificate, as it pertains to Certificate Manager managed renewal

Sourcemodule AwsCertificateManagerCertificateDomainValidationOptions = Awso_securityhub.Values.AwsCertificateManagerCertificateDomainValidationOptions
Sourcemodule AwsCertificateManagerCertificateRenewalSummary = Awso_securityhub.Values.AwsCertificateManagerCertificateRenewalSummary

Contains information about the Certificate Manager managed renewal for an AMAZON_ISSUED certificate.

Sourcemodule AwsCertificateManagerCertificateOptions = Awso_securityhub.Values.AwsCertificateManagerCertificateOptions

Contains other options for the certificate.

Sourcemodule AwsCertificateManagerCertificateKeyUsage = Awso_securityhub.Values.AwsCertificateManagerCertificateKeyUsage

Contains information about a key usage X.509 v3 extension object.

Sourcemodule AwsCertificateManagerCertificateKeyUsages = Awso_securityhub.Values.AwsCertificateManagerCertificateKeyUsages
Sourcemodule AwsCertificateManagerCertificateExtendedKeyUsage = Awso_securityhub.Values.AwsCertificateManagerCertificateExtendedKeyUsage

Contains information about an extended key usage X.509 v3 extension object.

Sourcemodule AwsCertificateManagerCertificateExtendedKeyUsages = Awso_securityhub.Values.AwsCertificateManagerCertificateExtendedKeyUsages
Sourcemodule AwsCertificateManagerCertificateDetails = Awso_securityhub.Values.AwsCertificateManagerCertificateDetails

Provides details about an Certificate Manager certificate.

Sourcemodule AwsCloudFormationStackOutputsDetails = Awso_securityhub.Values.AwsCloudFormationStackOutputsDetails

Provides information about the CloudFormation stack output.

Sourcemodule AwsCloudFormationStackOutputsList = Awso_securityhub.Values.AwsCloudFormationStackOutputsList
Sourcemodule AwsCloudFormationStackDriftInformationDetails = Awso_securityhub.Values.AwsCloudFormationStackDriftInformationDetails

Provides information about the stack's conformity to its expected template configuration.

Nests a stack as a resource in a top-level template. Nested stacks are stacks created as resources for another stack.

Sourcemodule AwsCloudFrontDistributionCacheBehavior = Awso_securityhub.Values.AwsCloudFrontDistributionCacheBehavior

Information about a cache behavior for the distribution.

Sourcemodule AwsCloudFrontDistributionCacheBehaviorsItemList = Awso_securityhub.Values.AwsCloudFrontDistributionCacheBehaviorsItemList
Sourcemodule AwsCloudFrontDistributionCacheBehaviors = Awso_securityhub.Values.AwsCloudFrontDistributionCacheBehaviors

Provides information about caching for the CloudFront distribution.

Sourcemodule AwsCloudFrontDistributionDefaultCacheBehavior = Awso_securityhub.Values.AwsCloudFrontDistributionDefaultCacheBehavior

Contains information about the default cache configuration for the CloudFront distribution.

Sourcemodule AwsCloudFrontDistributionViewerCertificate = Awso_securityhub.Values.AwsCloudFrontDistributionViewerCertificate

Provides information about the TLS/SSL configuration that the CloudFront distribution uses to communicate with viewers.

Sourcemodule AwsCloudFrontDistributionOriginS3OriginConfig = Awso_securityhub.Values.AwsCloudFrontDistributionOriginS3OriginConfig

Information about an origin that is an Amazon S3 bucket that is not configured with static website hosting.

Sourcemodule AwsCloudFrontDistributionOriginSslProtocols = Awso_securityhub.Values.AwsCloudFrontDistributionOriginSslProtocols

A complex type that contains information about the SSL/TLS protocols that CloudFront can use when establishing an HTTPS connection with your origin.

Sourcemodule AwsCloudFrontDistributionOriginCustomOriginConfig = Awso_securityhub.Values.AwsCloudFrontDistributionOriginCustomOriginConfig

A custom origin. A custom origin is any origin that is not an Amazon S3 bucket, with one exception. An Amazon S3 bucket that is configured with static website hosting is a custom origin.

Sourcemodule AwsCloudFrontDistributionOriginItem = Awso_securityhub.Values.AwsCloudFrontDistributionOriginItem

A complex type that describes the Amazon S3 bucket, HTTP server (for example, a web server), or other server from which CloudFront gets your files.

Sourcemodule AwsCloudFrontDistributionOriginItemList = Awso_securityhub.Values.AwsCloudFrontDistributionOriginItemList
Sourcemodule AwsCloudFrontDistributionOrigins = Awso_securityhub.Values.AwsCloudFrontDistributionOrigins

A complex type that contains information about origins and origin groups for this CloudFront distribution.

Sourcemodule AwsCloudFrontDistributionOriginGroupFailoverStatusCodesItemList = Awso_securityhub.Values.AwsCloudFrontDistributionOriginGroupFailoverStatusCodesItemList
Sourcemodule AwsCloudFrontDistributionOriginGroupFailoverStatusCodes = Awso_securityhub.Values.AwsCloudFrontDistributionOriginGroupFailoverStatusCodes

The status codes that cause an origin group to fail over.

Sourcemodule AwsCloudFrontDistributionOriginGroupFailover = Awso_securityhub.Values.AwsCloudFrontDistributionOriginGroupFailover

Provides information about when an origin group fails over.

Sourcemodule AwsCloudFrontDistributionOriginGroup = Awso_securityhub.Values.AwsCloudFrontDistributionOriginGroup

Information about an origin group for the CloudFront distribution.

Sourcemodule AwsCloudFrontDistributionOriginGroupsItemList = Awso_securityhub.Values.AwsCloudFrontDistributionOriginGroupsItemList
Sourcemodule AwsCloudFrontDistributionOriginGroups = Awso_securityhub.Values.AwsCloudFrontDistributionOriginGroups

Provides information about origin groups that are associated with the CloudFront distribution.

Sourcemodule AwsCloudFrontDistributionLogging = Awso_securityhub.Values.AwsCloudFrontDistributionLogging

A complex type that controls whether access logs are written for the CloudFront distribution.

Sourcemodule AwsCloudFrontDistributionDetails = Awso_securityhub.Values.AwsCloudFrontDistributionDetails

A CloudFront distribution configuration.

Provides details about a CloudTrail trail.

Sourcemodule AwsCloudWatchAlarmDimensionsDetails = Awso_securityhub.Values.AwsCloudWatchAlarmDimensionsDetails

Details about the dimensions for the metric associated with the alarm.

Sourcemodule AwsCloudWatchAlarmDimensionsList = Awso_securityhub.Values.AwsCloudWatchAlarmDimensionsList

Specifies an alarm and associates it with the specified metric or metric math expression.

Sourcemodule AwsCodeBuildProjectArtifactsDetails = Awso_securityhub.Values.AwsCodeBuildProjectArtifactsDetails

Information about the build artifacts for the CodeBuild project.

Sourcemodule AwsCodeBuildProjectArtifactsList = Awso_securityhub.Values.AwsCodeBuildProjectArtifactsList

Information about the VPC configuration that CodeBuild accesses.

Information about the build input source code for this build project.

Sourcemodule AwsCodeBuildProjectLogsConfigS3LogsDetails = Awso_securityhub.Values.AwsCodeBuildProjectLogsConfigS3LogsDetails

Information about logs built to an S3 bucket for a build project.

Sourcemodule AwsCodeBuildProjectLogsConfigCloudWatchLogsDetails = Awso_securityhub.Values.AwsCodeBuildProjectLogsConfigCloudWatchLogsDetails

Information about CloudWatch Logs for the build project.

Sourcemodule AwsCodeBuildProjectLogsConfigDetails = Awso_securityhub.Values.AwsCodeBuildProjectLogsConfigDetails

Information about logs for the build project.

Sourcemodule AwsCodeBuildProjectEnvironmentRegistryCredential = Awso_securityhub.Values.AwsCodeBuildProjectEnvironmentRegistryCredential

The credentials for access to a private registry.

Sourcemodule AwsCodeBuildProjectEnvironmentEnvironmentVariablesDetails = Awso_securityhub.Values.AwsCodeBuildProjectEnvironmentEnvironmentVariablesDetails

Information about an environment variable that is available to builds for the build project.

Sourcemodule AwsCodeBuildProjectEnvironmentEnvironmentVariablesList = Awso_securityhub.Values.AwsCodeBuildProjectEnvironmentEnvironmentVariablesList
Sourcemodule AwsCodeBuildProjectEnvironment = Awso_securityhub.Values.AwsCodeBuildProjectEnvironment

Information about the build environment for this build project.

Information about an CodeBuild project.

Provides details about an Database Migration Service (DMS) endpoint. An endpoint provides connection, data store type, and location information about your data store.

Sourcemodule AwsDmsReplicationInstanceVpcSecurityGroupsDetails = Awso_securityhub.Values.AwsDmsReplicationInstanceVpcSecurityGroupsDetails

Provides details about the virtual private cloud (VPC) security group that’s associated with the replication instance.

Sourcemodule AwsDmsReplicationInstanceVpcSecurityGroupsList = Awso_securityhub.Values.AwsDmsReplicationInstanceVpcSecurityGroupsList
Sourcemodule AwsDmsReplicationInstanceReplicationSubnetGroupDetails = Awso_securityhub.Values.AwsDmsReplicationInstanceReplicationSubnetGroupDetails

Provides details about the replication subnet group.

Sourcemodule AwsDmsReplicationInstanceDetails = Awso_securityhub.Values.AwsDmsReplicationInstanceDetails

Provides details about an Database Migration Service (DMS) replication instance. DMS uses a replication instance to connect to your source data store, read the source data, and format the data for consumption by the target data store.

Provides details about an Database Migration Service (DMS) replication task. A replication task moves a set of data from the source endpoint to the target endpoint.

Sourcemodule AwsDynamoDbTableAttributeDefinition = Awso_securityhub.Values.AwsDynamoDbTableAttributeDefinition

Contains a definition of an attribute for the table.

Sourcemodule AwsDynamoDbTableAttributeDefinitionList = Awso_securityhub.Values.AwsDynamoDbTableAttributeDefinitionList
Sourcemodule AwsDynamoDbTableBillingModeSummary = Awso_securityhub.Values.AwsDynamoDbTableBillingModeSummary

Provides information about the billing for read/write capacity on the table.

Sourcemodule AwsDynamoDbTableStreamSpecification = Awso_securityhub.Values.AwsDynamoDbTableStreamSpecification

The current DynamoDB Streams configuration for the table.

Sourcemodule AwsDynamoDbTableSseDescription = Awso_securityhub.Values.AwsDynamoDbTableSseDescription

Information about the server-side encryption for the table.

Sourcemodule AwsDynamoDbTableRestoreSummary = Awso_securityhub.Values.AwsDynamoDbTableRestoreSummary

Information about the restore for the table.

Sourcemodule AwsDynamoDbTableProvisionedThroughputOverride = Awso_securityhub.Values.AwsDynamoDbTableProvisionedThroughputOverride

Replica-specific configuration for the provisioned throughput.

Sourcemodule AwsDynamoDbTableReplicaGlobalSecondaryIndex = Awso_securityhub.Values.AwsDynamoDbTableReplicaGlobalSecondaryIndex

Information about a global secondary index for a DynamoDB table replica.

Sourcemodule AwsDynamoDbTableReplicaGlobalSecondaryIndexList = Awso_securityhub.Values.AwsDynamoDbTableReplicaGlobalSecondaryIndexList

Information about a replica of a DynamoDB table.

Sourcemodule AwsDynamoDbTableProvisionedThroughput = Awso_securityhub.Values.AwsDynamoDbTableProvisionedThroughput

Information about the provisioned throughput for the table or for a global secondary index.

For global and local secondary indexes, identifies the attributes that are copied from the table into the index.

A component of the key schema for the DynamoDB table, a global secondary index, or a local secondary index.

Sourcemodule AwsDynamoDbTableLocalSecondaryIndex = Awso_securityhub.Values.AwsDynamoDbTableLocalSecondaryIndex

Information about a local secondary index for a DynamoDB table.

Sourcemodule AwsDynamoDbTableLocalSecondaryIndexList = Awso_securityhub.Values.AwsDynamoDbTableLocalSecondaryIndexList
Sourcemodule AwsDynamoDbTableGlobalSecondaryIndex = Awso_securityhub.Values.AwsDynamoDbTableGlobalSecondaryIndex

Information abut a global secondary index for the table.

Sourcemodule AwsDynamoDbTableGlobalSecondaryIndexList = Awso_securityhub.Values.AwsDynamoDbTableGlobalSecondaryIndexList

Provides details about a DynamoDB table.

Sourcemodule AwsEc2ClientVpnEndpointAuthenticationOptionsActiveDirectoryDetails = Awso_securityhub.Values.AwsEc2ClientVpnEndpointAuthenticationOptionsActiveDirectoryDetails

Provides details about an Active Directory that’s used to authenticate an Client VPN endpoint.

Sourcemodule AwsEc2ClientVpnEndpointAuthenticationOptionsMutualAuthenticationDetails = Awso_securityhub.Values.AwsEc2ClientVpnEndpointAuthenticationOptionsMutualAuthenticationDetails

Information about the client certificate used for authentication.

Sourcemodule AwsEc2ClientVpnEndpointAuthenticationOptionsFederatedAuthenticationDetails = Awso_securityhub.Values.AwsEc2ClientVpnEndpointAuthenticationOptionsFederatedAuthenticationDetails

Describes the IAM SAML identity providers used for federated authentication.

Sourcemodule AwsEc2ClientVpnEndpointAuthenticationOptionsDetails = Awso_securityhub.Values.AwsEc2ClientVpnEndpointAuthenticationOptionsDetails

Information about the authentication method used by the Client VPN endpoint.

Sourcemodule AwsEc2ClientVpnEndpointAuthenticationOptionsList = Awso_securityhub.Values.AwsEc2ClientVpnEndpointAuthenticationOptionsList
Sourcemodule AwsEc2ClientVpnEndpointClientConnectOptionsStatusDetails = Awso_securityhub.Values.AwsEc2ClientVpnEndpointClientConnectOptionsStatusDetails

Describes the status of the Client VPN endpoint attribute.

Sourcemodule AwsEc2ClientVpnEndpointClientConnectOptionsDetails = Awso_securityhub.Values.AwsEc2ClientVpnEndpointClientConnectOptionsDetails

The options for managing connection authorization for new client connections.

Sourcemodule AwsEc2ClientVpnEndpointClientLoginBannerOptionsDetails = Awso_securityhub.Values.AwsEc2ClientVpnEndpointClientLoginBannerOptionsDetails

Options for enabling a customizable text banner that will be displayed on Amazon Web Services provided clients when a VPN session is established.

Sourcemodule AwsEc2ClientVpnEndpointConnectionLogOptionsDetails = Awso_securityhub.Values.AwsEc2ClientVpnEndpointConnectionLogOptionsDetails

Information about the client connection logging options for the Client VPN endpoint.

Sourcemodule AwsEc2ClientVpnEndpointDetails = Awso_securityhub.Values.AwsEc2ClientVpnEndpointDetails

Describes an Client VPN endpoint. A Client VPN endpoint is the resource that you create and configure to enable and manage client VPN sessions. It's the termination point for all client VPN sessions.

Information about an Elastic IP address.

Sourcemodule AwsEc2InstanceNetworkInterfacesDetails = Awso_securityhub.Values.AwsEc2InstanceNetworkInterfacesDetails

Identifies a network interface for the Amazon EC2 instance.

Sourcemodule AwsEc2InstanceNetworkInterfacesList = Awso_securityhub.Values.AwsEc2InstanceNetworkInterfacesList
Sourcemodule AwsEc2InstanceMonitoringDetails = Awso_securityhub.Values.AwsEc2InstanceMonitoringDetails

The type of monitoring that’s turned on for an Amazon EC2 instance.

Metadata options that allow you to configure and secure the Amazon EC2 instance.

The details of an Amazon EC2 instance.

Sourcemodule AwsEc2LaunchTemplateDataBlockDeviceMappingSetEbsDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataBlockDeviceMappingSetEbsDetails

Parameters for a block device for an Amazon Elastic Block Store (Amazon EBS) volume in an Amazon EC2 launch template.

Sourcemodule AwsEc2LaunchTemplateDataBlockDeviceMappingSetDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataBlockDeviceMappingSetDetails

Information about a block device mapping for an Amazon Elastic Compute Cloud (Amazon EC2) launch template.

Sourcemodule AwsEc2LaunchTemplateDataBlockDeviceMappingSetList = Awso_securityhub.Values.AwsEc2LaunchTemplateDataBlockDeviceMappingSetList
Sourcemodule AwsEc2LaunchTemplateDataCapacityReservationSpecificationCapacityReservationTargetDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataCapacityReservationSpecificationCapacityReservationTargetDetails

Information about the target Capacity Reservation or Capacity Reservation group in which to run an Amazon EC2 instance.

Sourcemodule AwsEc2LaunchTemplateDataCapacityReservationSpecificationDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataCapacityReservationSpecificationDetails

Specifies the Capacity Reservation targeting option of an Amazon EC2 instance.

Sourcemodule AwsEc2LaunchTemplateDataCpuOptionsDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataCpuOptionsDetails

Specifies the CPU options for an Amazon EC2 instance. For more information, see Optimize CPU options in the Amazon Elastic Compute Cloud User Guide.

Sourcemodule AwsEc2LaunchTemplateDataCreditSpecificationDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataCreditSpecificationDetails

Specifies the credit option for CPU usage of a T2, T3, or T3a Amazon EC2 instance.

Sourcemodule AwsEc2LaunchTemplateDataPrivateDnsNameOptionsDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataPrivateDnsNameOptionsDetails

Describes the options for Amazon EC2 instance hostnames.

Sourcemodule AwsEc2LaunchTemplateDataPlacementDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataPlacementDetails

Provides details about the placement of an Amazon EC2 instance.

Sourcemodule AwsEc2LaunchTemplateDataNetworkInterfaceSetPrivateIpAddressesDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataNetworkInterfaceSetPrivateIpAddressesDetails

One or more private IPv4 addresses.

Sourcemodule AwsEc2LaunchTemplateDataNetworkInterfaceSetPrivateIpAddressesList = Awso_securityhub.Values.AwsEc2LaunchTemplateDataNetworkInterfaceSetPrivateIpAddressesList
Sourcemodule AwsEc2LaunchTemplateDataNetworkInterfaceSetIpv6PrefixesDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataNetworkInterfaceSetIpv6PrefixesDetails

Provides details on one or more IPv6 prefixes to be assigned to the network interface.

Sourcemodule AwsEc2LaunchTemplateDataNetworkInterfaceSetIpv6PrefixesList = Awso_securityhub.Values.AwsEc2LaunchTemplateDataNetworkInterfaceSetIpv6PrefixesList
Sourcemodule AwsEc2LaunchTemplateDataNetworkInterfaceSetIpv6AddressesDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataNetworkInterfaceSetIpv6AddressesDetails

Specifies an IPv6 address in an Amazon EC2 launch template.

Sourcemodule AwsEc2LaunchTemplateDataNetworkInterfaceSetIpv6AddressesList = Awso_securityhub.Values.AwsEc2LaunchTemplateDataNetworkInterfaceSetIpv6AddressesList
Sourcemodule AwsEc2LaunchTemplateDataNetworkInterfaceSetIpv4PrefixesDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataNetworkInterfaceSetIpv4PrefixesDetails

Provides details on one or more IPv4 prefixes for a network interface.

Sourcemodule AwsEc2LaunchTemplateDataNetworkInterfaceSetIpv4PrefixesList = Awso_securityhub.Values.AwsEc2LaunchTemplateDataNetworkInterfaceSetIpv4PrefixesList
Sourcemodule AwsEc2LaunchTemplateDataNetworkInterfaceSetDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataNetworkInterfaceSetDetails

One or more network interfaces to attach to an Amazon EC2 instance. If you specify a network interface, you must specify security groups and subnets as part of the network interface.

Sourcemodule AwsEc2LaunchTemplateDataNetworkInterfaceSetList = Awso_securityhub.Values.AwsEc2LaunchTemplateDataNetworkInterfaceSetList
Sourcemodule AwsEc2LaunchTemplateDataMonitoringDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataMonitoringDetails

The monitoring for an Amazon EC2 instance.

Sourcemodule AwsEc2LaunchTemplateDataMetadataOptionsDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataMetadataOptionsDetails

Specifies the metadata options for an Amazon EC2 instance.

Sourcemodule AwsEc2LaunchTemplateDataMaintenanceOptionsDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataMaintenanceOptionsDetails

The maintenance options of an Amazon EC2 instance.

Sourcemodule AwsEc2LaunchTemplateDataLicenseSetDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataLicenseSetDetails

Provides details about the license configuration for an Amazon EC2 instance.

Sourcemodule AwsEc2LaunchTemplateDataLicenseSetList = Awso_securityhub.Values.AwsEc2LaunchTemplateDataLicenseSetList
Sourcemodule AwsEc2LaunchTemplateDataInstanceRequirementsVCpuCountDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataInstanceRequirementsVCpuCountDetails

The minimum and maximum number of vCPUs for an Amazon EC2 instance.

Sourcemodule AwsEc2LaunchTemplateDataInstanceRequirementsTotalLocalStorageGBDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataInstanceRequirementsTotalLocalStorageGBDetails

The minimum and maximum amount of total local storage, in GB, that an Amazon EC2 instance uses.

Sourcemodule AwsEc2LaunchTemplateDataInstanceRequirementsNetworkInterfaceCountDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataInstanceRequirementsNetworkInterfaceCountDetails

The minimum and maximum number of network interfaces to be attached to an Amazon EC2 instance.

Sourcemodule AwsEc2LaunchTemplateDataInstanceRequirementsMemoryMiBDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataInstanceRequirementsMemoryMiBDetails

The minimum and maximum amount of memory, in MiB, for an Amazon EC2 instance.

Sourcemodule AwsEc2LaunchTemplateDataInstanceRequirementsMemoryGiBPerVCpuDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataInstanceRequirementsMemoryGiBPerVCpuDetails

The minimum and maximum amount of memory per vCPU, in GiB.

Sourcemodule AwsEc2LaunchTemplateDataInstanceRequirementsBaselineEbsBandwidthMbpsDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataInstanceRequirementsBaselineEbsBandwidthMbpsDetails

The minimum and maximum baseline bandwidth to Amazon Elastic Block Store (Amazon EBS), in Mbps. For more information, see Amazon EBS–optimized instances in the Amazon EC2 User Guide.

Sourcemodule AwsEc2LaunchTemplateDataInstanceRequirementsAcceleratorTotalMemoryMiBDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataInstanceRequirementsAcceleratorTotalMemoryMiBDetails

The minimum and maximum amount of memory, in MiB, for the accelerators on an Amazon EC2 instance.

Sourcemodule AwsEc2LaunchTemplateDataInstanceRequirementsAcceleratorCountDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataInstanceRequirementsAcceleratorCountDetails

The minimum and maximum number of accelerators (GPUs, FPGAs, or Amazon Web Services Inferentia chips) on an Amazon EC2 instance.

Sourcemodule AwsEc2LaunchTemplateDataInstanceRequirementsDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataInstanceRequirementsDetails

The attributes for the Amazon EC2 instance types.

Sourcemodule AwsEc2LaunchTemplateDataInstanceMarketOptionsSpotOptionsDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataInstanceMarketOptionsSpotOptionsDetails

Provides details about the market (purchasing) options for Spot Instances.

Sourcemodule AwsEc2LaunchTemplateDataInstanceMarketOptionsDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataInstanceMarketOptionsDetails

Provides details about the market (purchasing) option for an Amazon EC2 instance.

Sourcemodule AwsEc2LaunchTemplateDataIamInstanceProfileDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataIamInstanceProfileDetails

Provides details for an Identity and Access Management (IAM) instance profile, which is a container for an IAM role for your instance.

Sourcemodule AwsEc2LaunchTemplateDataHibernationOptionsDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataHibernationOptionsDetails

Specifies whether your Amazon EC2 instance is configured for hibernation.

Sourcemodule AwsEc2LaunchTemplateDataEnclaveOptionsDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataEnclaveOptionsDetails

Indicates whether the instance is enabled for Amazon Web Services Nitro Enclaves.

Sourcemodule AwsEc2LaunchTemplateDataElasticInferenceAcceleratorSetDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataElasticInferenceAcceleratorSetDetails

Provides details for an Amazon Elastic Inference accelerator.

Sourcemodule AwsEc2LaunchTemplateDataElasticInferenceAcceleratorSetList = Awso_securityhub.Values.AwsEc2LaunchTemplateDataElasticInferenceAcceleratorSetList
Sourcemodule AwsEc2LaunchTemplateDataElasticGpuSpecificationSetDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataElasticGpuSpecificationSetDetails

Provides details about an Elastic Graphics specification for an Amazon EC2 launch template.

Sourcemodule AwsEc2LaunchTemplateDataElasticGpuSpecificationSetList = Awso_securityhub.Values.AwsEc2LaunchTemplateDataElasticGpuSpecificationSetList
Sourcemodule AwsEc2LaunchTemplateDataDetails = Awso_securityhub.Values.AwsEc2LaunchTemplateDataDetails

The information to include in an Amazon Elastic Compute Cloud (Amazon EC2) launch template.

Specifies the properties for creating an Amazon Elastic Compute Cloud (Amazon EC2) launch template.

An association between the network ACL and a subnet.

Sourcemodule AwsEc2NetworkAclAssociationList = Awso_securityhub.Values.AwsEc2NetworkAclAssociationList

A range of ports.

An Internet Control Message Protocol (ICMP) type and code.

A rule for the network ACL. Each rule allows or denies access based on the IP address, traffic direction, port, and protocol.

Contains details about an Amazon EC2 network access control list (ACL).

Sourcemodule AwsEc2NetworkInterfaceAttachment = Awso_securityhub.Values.AwsEc2NetworkInterfaceAttachment

Information about the network interface attachment.

Sourcemodule AwsEc2NetworkInterfaceSecurityGroup = Awso_securityhub.Values.AwsEc2NetworkInterfaceSecurityGroup

A security group associated with the network interface.

Sourcemodule AwsEc2NetworkInterfaceSecurityGroupList = Awso_securityhub.Values.AwsEc2NetworkInterfaceSecurityGroupList
Sourcemodule AwsEc2NetworkInterfacePrivateIpAddressDetail = Awso_securityhub.Values.AwsEc2NetworkInterfacePrivateIpAddressDetail

Provides information about a private IPv4 address that is with the network interface.

Sourcemodule AwsEc2NetworkInterfacePrivateIpAddressList = Awso_securityhub.Values.AwsEc2NetworkInterfacePrivateIpAddressList
Sourcemodule AwsEc2NetworkInterfaceIpV6AddressDetail = Awso_securityhub.Values.AwsEc2NetworkInterfaceIpV6AddressDetail

Provides information about an IPV6 address that is associated with the network interface.

Sourcemodule AwsEc2NetworkInterfaceIpV6AddressList = Awso_securityhub.Values.AwsEc2NetworkInterfaceIpV6AddressList

Details about the network interface

Provides details about the routes in the route table.

Describes a virtual private gateway propagating route.

Provides details about a route table for the specified VPC.

Sourcemodule AwsEc2SecurityGroupUserIdGroupPair = Awso_securityhub.Values.AwsEc2SecurityGroupUserIdGroupPair

A relationship between a security group and a user.

Sourcemodule AwsEc2SecurityGroupUserIdGroupPairList = Awso_securityhub.Values.AwsEc2SecurityGroupUserIdGroupPairList
Sourcemodule AwsEc2SecurityGroupPrefixListId = Awso_securityhub.Values.AwsEc2SecurityGroupPrefixListId

A prefix list ID.

Sourcemodule AwsEc2SecurityGroupPrefixListIdList = Awso_securityhub.Values.AwsEc2SecurityGroupPrefixListIdList

A range of IPv6 addresses.

Sourcemodule AwsEc2SecurityGroupIpv6RangeList = Awso_securityhub.Values.AwsEc2SecurityGroupIpv6RangeList

A range of IPv4 addresses.

Sourcemodule AwsEc2SecurityGroupIpRangeList = Awso_securityhub.Values.AwsEc2SecurityGroupIpRangeList
Sourcemodule AwsEc2SecurityGroupIpPermission = Awso_securityhub.Values.AwsEc2SecurityGroupIpPermission

An IP permission for an EC2 security group.

Sourcemodule AwsEc2SecurityGroupIpPermissionList = Awso_securityhub.Values.AwsEc2SecurityGroupIpPermissionList

Details about an Amazon EC2 security group.

An IPV6 CIDR block association.

Contains information about a subnet in Amazon EC2.

Information about an Amazon Web Services Amazon EC2 Transit Gateway that interconnects virtual private clouds (VPCs) and on-premises networks.

An attachment to an Amazon EC2 volume.

Details about an EC2 volume.

An IPv4 CIDR block association.

Details about an EC2 VPC.

Sourcemodule AwsEc2VpcEndpointServiceServiceTypeDetails = Awso_securityhub.Values.AwsEc2VpcEndpointServiceServiceTypeDetails

The service type information for a VPC endpoint service.

Sourcemodule AwsEc2VpcEndpointServiceServiceTypeList = Awso_securityhub.Values.AwsEc2VpcEndpointServiceServiceTypeList
Sourcemodule AwsEc2VpcEndpointServiceDetails = Awso_securityhub.Values.AwsEc2VpcEndpointServiceDetails

Contains details about the service configuration for a VPC endpoint service.

Provides information about the VPC peering connection options for the accepter or requester VPC.

Sourcemodule VpcInfoIpv6CidrBlockSetDetails = Awso_securityhub.Values.VpcInfoIpv6CidrBlockSetDetails

Provides details about the IPv6 CIDR blocks for the VPC.

Provides details about the IPv4 CIDR blocks for the VPC.

Sourcemodule AwsEc2VpcPeeringConnectionVpcInfoDetails = Awso_securityhub.Values.AwsEc2VpcPeeringConnectionVpcInfoDetails

Describes a VPC in a VPC peering connection.

Sourcemodule AwsEc2VpcPeeringConnectionStatusDetails = Awso_securityhub.Values.AwsEc2VpcPeeringConnectionStatusDetails

Details about the status of the VPC peering connection.

Sourcemodule AwsEc2VpcPeeringConnectionDetails = Awso_securityhub.Values.AwsEc2VpcPeeringConnectionDetails

Provides information about a VPC peering connection between two VPCs: a requester VPC that you own and an accepter VPC with which to create the connection.

Sourcemodule AwsEc2VpnConnectionVgwTelemetryDetails = Awso_securityhub.Values.AwsEc2VpnConnectionVgwTelemetryDetails

Information about the VPN tunnel.

Sourcemodule AwsEc2VpnConnectionVgwTelemetryList = Awso_securityhub.Values.AwsEc2VpnConnectionVgwTelemetryList
Sourcemodule AwsEc2VpnConnectionRoutesDetails = Awso_securityhub.Values.AwsEc2VpnConnectionRoutesDetails

A static routes associated with the VPN connection.

Sourcemodule AwsEc2VpnConnectionOptionsTunnelOptionsDetails = Awso_securityhub.Values.AwsEc2VpnConnectionOptionsTunnelOptionsDetails

The VPN tunnel options.

Sourcemodule AwsEc2VpnConnectionOptionsTunnelOptionsList = Awso_securityhub.Values.AwsEc2VpnConnectionOptionsTunnelOptionsList
Sourcemodule AwsEc2VpnConnectionOptionsDetails = Awso_securityhub.Values.AwsEc2VpnConnectionOptionsDetails

VPN connection options.

Details about an Amazon EC2 VPN connection.

Information about an Amazon ECR image.

Sourcemodule AwsEcrRepositoryLifecyclePolicyDetails = Awso_securityhub.Values.AwsEcrRepositoryLifecyclePolicyDetails

Information about the lifecycle policy for the repository.

Sourcemodule AwsEcrRepositoryImageScanningConfigurationDetails = Awso_securityhub.Values.AwsEcrRepositoryImageScanningConfigurationDetails

The image scanning configuration for a repository.

Provides information about an Amazon Elastic Container Registry repository.

Sourcemodule AwsEcsClusterClusterSettingsDetails = Awso_securityhub.Values.AwsEcsClusterClusterSettingsDetails

Indicates whether to enable CloudWatch Container Insights for the ECS cluster.

Sourcemodule AwsEcsClusterClusterSettingsList = Awso_securityhub.Values.AwsEcsClusterClusterSettingsList
Sourcemodule AwsEcsClusterConfigurationExecuteCommandConfigurationLogConfigurationDetails = Awso_securityhub.Values.AwsEcsClusterConfigurationExecuteCommandConfigurationLogConfigurationDetails

The log configuration for the results of the run command actions.

Sourcemodule AwsEcsClusterConfigurationExecuteCommandConfigurationDetails = Awso_securityhub.Values.AwsEcsClusterConfigurationExecuteCommandConfigurationDetails

Contains the run command configuration for the cluster.

Sourcemodule AwsEcsClusterConfigurationDetails = Awso_securityhub.Values.AwsEcsClusterConfigurationDetails

The run command configuration for the cluster.

Sourcemodule AwsEcsClusterDefaultCapacityProviderStrategyDetails = Awso_securityhub.Values.AwsEcsClusterDefaultCapacityProviderStrategyDetails

The default capacity provider strategy for the cluster. The default capacity provider strategy is used when services or tasks are run without a specified launch type or capacity provider strategy.

Sourcemodule AwsEcsClusterDefaultCapacityProviderStrategyList = Awso_securityhub.Values.AwsEcsClusterDefaultCapacityProviderStrategyList

Provides details about an Amazon ECS cluster.

Details for a volume mount point that's used in a container definition.

Provides information about an Amazon ECS container.

Sourcemodule AwsEcsServiceCapacityProviderStrategyDetails = Awso_securityhub.Values.AwsEcsServiceCapacityProviderStrategyDetails

Strategy item for the capacity provider strategy that the service uses.

Sourcemodule AwsEcsServiceCapacityProviderStrategyList = Awso_securityhub.Values.AwsEcsServiceCapacityProviderStrategyList
Sourcemodule AwsEcsServiceDeploymentConfigurationDeploymentCircuitBreakerDetails = Awso_securityhub.Values.AwsEcsServiceDeploymentConfigurationDeploymentCircuitBreakerDetails

Determines whether a service deployment fails if a service cannot reach a steady state.

Sourcemodule AwsEcsServiceDeploymentConfigurationDetails = Awso_securityhub.Values.AwsEcsServiceDeploymentConfigurationDetails

Optional deployment parameters for the service.

Sourcemodule AwsEcsServiceDeploymentControllerDetails = Awso_securityhub.Values.AwsEcsServiceDeploymentControllerDetails

Information about the deployment controller type that the service uses.

Sourcemodule AwsEcsServiceServiceRegistriesDetails = Awso_securityhub.Values.AwsEcsServiceServiceRegistriesDetails

Information about a service discovery registry to assign to the service.

Sourcemodule AwsEcsServiceServiceRegistriesList = Awso_securityhub.Values.AwsEcsServiceServiceRegistriesList
Sourcemodule AwsEcsServicePlacementStrategiesDetails = Awso_securityhub.Values.AwsEcsServicePlacementStrategiesDetails

A placement strategy that determines how to place the tasks for the service.

Sourcemodule AwsEcsServicePlacementStrategiesList = Awso_securityhub.Values.AwsEcsServicePlacementStrategiesList
Sourcemodule AwsEcsServicePlacementConstraintsDetails = Awso_securityhub.Values.AwsEcsServicePlacementConstraintsDetails

A placement constraint for the tasks in the service.

Sourcemodule AwsEcsServicePlacementConstraintsList = Awso_securityhub.Values.AwsEcsServicePlacementConstraintsList
Sourcemodule AwsEcsServiceNetworkConfigurationAwsVpcConfigurationDetails = Awso_securityhub.Values.AwsEcsServiceNetworkConfigurationAwsVpcConfigurationDetails

For tasks that use the awsvpc networking mode, the VPC subnet and security group configuration.

Sourcemodule AwsEcsServiceNetworkConfigurationDetails = Awso_securityhub.Values.AwsEcsServiceNetworkConfigurationDetails

For tasks that use the awsvpc networking mode, the VPC subnet and security group configuration.

Sourcemodule AwsEcsServiceLoadBalancersDetails = Awso_securityhub.Values.AwsEcsServiceLoadBalancersDetails

Information about a load balancer that the service uses.

Sourcemodule AwsEcsServiceLoadBalancersList = Awso_securityhub.Values.AwsEcsServiceLoadBalancersList

Provides details about a service within an ECS cluster.

Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsDependsOnDetails = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsDependsOnDetails

A dependency that is defined for container startup and shutdown.

Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsDependsOnList = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsDependsOnList
Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsVolumesFromDetails = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsVolumesFromDetails

A data volume to mount from another container.

Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsVolumesFromList = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsVolumesFromList
Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsUlimitsDetails = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsUlimitsDetails

A ulimit to set in the container.

Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsUlimitsList = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsUlimitsList
Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsSystemControlsDetails = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsSystemControlsDetails

A namespaced kernel parameter to set in the container.

Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsSystemControlsList = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsSystemControlsList
Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsSecretsDetails = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsSecretsDetails

A secret to pass to the container.

Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsSecretsList = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsSecretsList
Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsResourceRequirementsDetails = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsResourceRequirementsDetails

A resource to assign to a container.

Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsResourceRequirementsList = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsResourceRequirementsList
Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsRepositoryCredentialsDetails = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsRepositoryCredentialsDetails

The private repository authentication credentials to use.

Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsPortMappingsDetails = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsPortMappingsDetails

A port mapping for the container.

Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsPortMappingsList = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsPortMappingsList
Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsMountPointsDetails = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsMountPointsDetails

A mount point for the data volumes in the container.

Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsMountPointsList = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsMountPointsList
Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsLogConfigurationSecretOptionsDetails = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsLogConfigurationSecretOptionsDetails

A secret to pass to the log configuration.

Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsLogConfigurationSecretOptionsList = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsLogConfigurationSecretOptionsList
Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsLogConfigurationDetails = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsLogConfigurationDetails

The log configuration specification for the container.

Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsLinuxParametersTmpfsDetails = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsLinuxParametersTmpfsDetails

The container path, mount options, and size (in MiB) of a tmpfs mount.

Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsLinuxParametersTmpfsList = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsLinuxParametersTmpfsList
Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsLinuxParametersDevicesDetails = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsLinuxParametersDevicesDetails

A host device to expose to the container.

Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsLinuxParametersDevicesList = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsLinuxParametersDevicesList
Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsLinuxParametersCapabilitiesDetails = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsLinuxParametersCapabilitiesDetails

The Linux capabilities for the container that are added to or dropped from the default configuration provided by Docker.

Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsLinuxParametersDetails = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsLinuxParametersDetails

>Linux-specific modifications that are applied to the container, such as Linux kernel capabilities.

Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsHealthCheckDetails = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsHealthCheckDetails

The container health check command and associated configuration parameters for the container.

Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsFirelensConfigurationDetails = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsFirelensConfigurationDetails

The FireLens configuration for the container. The configuration specifies and configures a log router for container logs.

Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsExtraHostsDetails = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsExtraHostsDetails

A hostname and IP address mapping to append to the /etc/hosts file on the container.

Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsExtraHostsList = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsExtraHostsList
Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsEnvironmentDetails = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsEnvironmentDetails

An environment variable to pass to the container.

Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsEnvironmentList = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsEnvironmentList
Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsEnvironmentFilesDetails = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsEnvironmentFilesDetails

A file that contain environment variables to pass to a container.

Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsEnvironmentFilesList = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsEnvironmentFilesList
Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsDetails = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsDetails

A container definition that describes a container in the task.

Sourcemodule AwsEcsTaskDefinitionContainerDefinitionsList = Awso_securityhub.Values.AwsEcsTaskDefinitionContainerDefinitionsList
Sourcemodule AwsEcsTaskDefinitionVolumesHostDetails = Awso_securityhub.Values.AwsEcsTaskDefinitionVolumesHostDetails

Information about a bind mount host volume.

Sourcemodule AwsEcsTaskDefinitionVolumesEfsVolumeConfigurationAuthorizationConfigDetails = Awso_securityhub.Values.AwsEcsTaskDefinitionVolumesEfsVolumeConfigurationAuthorizationConfigDetails
Sourcemodule AwsEcsTaskDefinitionVolumesEfsVolumeConfigurationDetails = Awso_securityhub.Values.AwsEcsTaskDefinitionVolumesEfsVolumeConfigurationDetails

Information about the Amazon Elastic File System file system that is used for task storage.

Sourcemodule AwsEcsTaskDefinitionVolumesDockerVolumeConfigurationDetails = Awso_securityhub.Values.AwsEcsTaskDefinitionVolumesDockerVolumeConfigurationDetails

Information about a Docker volume.

Sourcemodule AwsEcsTaskDefinitionVolumesDetails = Awso_securityhub.Values.AwsEcsTaskDefinitionVolumesDetails

A data volume to mount from another container.

Sourcemodule AwsEcsTaskDefinitionVolumesList = Awso_securityhub.Values.AwsEcsTaskDefinitionVolumesList
Sourcemodule AwsEcsTaskDefinitionProxyConfigurationProxyConfigurationPropertiesDetails = Awso_securityhub.Values.AwsEcsTaskDefinitionProxyConfigurationProxyConfigurationPropertiesDetails

A network configuration parameter to provide to the Container Network Interface (CNI) plugin.

Sourcemodule AwsEcsTaskDefinitionProxyConfigurationProxyConfigurationPropertiesList = Awso_securityhub.Values.AwsEcsTaskDefinitionProxyConfigurationProxyConfigurationPropertiesList
Sourcemodule AwsEcsTaskDefinitionProxyConfigurationDetails = Awso_securityhub.Values.AwsEcsTaskDefinitionProxyConfigurationDetails

The configuration details for the App Mesh proxy.

Sourcemodule AwsEcsTaskDefinitionPlacementConstraintsDetails = Awso_securityhub.Values.AwsEcsTaskDefinitionPlacementConstraintsDetails

A placement constraint object to use for tasks.

Sourcemodule AwsEcsTaskDefinitionPlacementConstraintsList = Awso_securityhub.Values.AwsEcsTaskDefinitionPlacementConstraintsList
Sourcemodule AwsEcsTaskDefinitionInferenceAcceleratorsDetails = Awso_securityhub.Values.AwsEcsTaskDefinitionInferenceAcceleratorsDetails

An Elastic Inference accelerator to use for the containers in the task.

Sourcemodule AwsEcsTaskDefinitionInferenceAcceleratorsList = Awso_securityhub.Values.AwsEcsTaskDefinitionInferenceAcceleratorsList

Details about a task definition. A task definition describes the container and volume definitions of an Amazon Elastic Container Service task.

Provides details on a container instance bind mount host volume.

Provides information about a data volume that's used in a task definition.

Provides details about a task in a cluster.

Sourcemodule AwsEfsAccessPointRootDirectoryCreationInfoDetails = Awso_securityhub.Values.AwsEfsAccessPointRootDirectoryCreationInfoDetails

Provides information about the settings that Amazon EFS uses to create the root directory when a client connects to an access point.

Sourcemodule AwsEfsAccessPointRootDirectoryDetails = Awso_securityhub.Values.AwsEfsAccessPointRootDirectoryDetails

Provides information about the directory on the Amazon EFS file system that the access point exposes as the root directory to NFS clients using the access point.

Sourcemodule AwsEfsAccessPointPosixUserDetails = Awso_securityhub.Values.AwsEfsAccessPointPosixUserDetails

Provides details for all file system operations using this Amazon EFS access point.

Provides information about an Amazon EFS access point.

Sourcemodule AwsEksClusterResourcesVpcConfigDetails = Awso_securityhub.Values.AwsEksClusterResourcesVpcConfigDetails

Information about the VPC configuration used by the cluster control plane.

Sourcemodule AwsEksClusterLoggingClusterLoggingDetails = Awso_securityhub.Values.AwsEksClusterLoggingClusterLoggingDetails

Details for a cluster logging configuration.

Sourcemodule AwsEksClusterLoggingClusterLoggingList = Awso_securityhub.Values.AwsEksClusterLoggingClusterLoggingList

The logging configuration for an Amazon EKS cluster.

Provides details about an Amazon EKS cluster.

Sourcemodule AwsElasticBeanstalkEnvironmentTier = Awso_securityhub.Values.AwsElasticBeanstalkEnvironmentTier

Contains information about the tier of the environment.

Sourcemodule AwsElasticBeanstalkEnvironmentOptionSetting = Awso_securityhub.Values.AwsElasticBeanstalkEnvironmentOptionSetting

A configuration option setting for the environment.

Sourcemodule AwsElasticBeanstalkEnvironmentOptionSettings = Awso_securityhub.Values.AwsElasticBeanstalkEnvironmentOptionSettings

Contains information about a link to another environment that is in the same group.

Sourcemodule AwsElasticBeanstalkEnvironmentDetails = Awso_securityhub.Values.AwsElasticBeanstalkEnvironmentDetails

Contains details about an Elastic Beanstalk environment.

Sourcemodule AwsElasticsearchDomainVPCOptions = Awso_securityhub.Values.AwsElasticsearchDomainVPCOptions

Information that OpenSearch derives based on VPCOptions for the domain.

Sourcemodule AwsElasticsearchDomainServiceSoftwareOptions = Awso_securityhub.Values.AwsElasticsearchDomainServiceSoftwareOptions

Information about the state of the domain relative to the latest service software.

Sourcemodule AwsElasticsearchDomainNodeToNodeEncryptionOptions = Awso_securityhub.Values.AwsElasticsearchDomainNodeToNodeEncryptionOptions

Details about the configuration for node-to-node encryption.

Sourcemodule AwsElasticsearchDomainLogPublishingOptionsLogConfig = Awso_securityhub.Values.AwsElasticsearchDomainLogPublishingOptionsLogConfig

The log configuration.

Sourcemodule AwsElasticsearchDomainLogPublishingOptions = Awso_securityhub.Values.AwsElasticsearchDomainLogPublishingOptions

configures the CloudWatch Logs to publish for the Elasticsearch domain.

Sourcemodule AwsElasticsearchDomainEncryptionAtRestOptions = Awso_securityhub.Values.AwsElasticsearchDomainEncryptionAtRestOptions

Details about the configuration for encryption at rest.

Sourcemodule AwsElasticsearchDomainElasticsearchClusterConfigZoneAwarenessConfigDetails = Awso_securityhub.Values.AwsElasticsearchDomainElasticsearchClusterConfigZoneAwarenessConfigDetails

Configuration options for zone awareness.

Sourcemodule AwsElasticsearchDomainElasticsearchClusterConfigDetails = Awso_securityhub.Values.AwsElasticsearchDomainElasticsearchClusterConfigDetails

details about the configuration of an OpenSearch cluster.

Sourcemodule AwsElasticsearchDomainDomainEndpointOptions = Awso_securityhub.Values.AwsElasticsearchDomainDomainEndpointOptions

Additional options for the domain endpoint, such as whether to require HTTPS for all traffic.

Information about an Elasticsearch domain.

Sourcemodule AwsElbAppCookieStickinessPolicy = Awso_securityhub.Values.AwsElbAppCookieStickinessPolicy

Contains information about a stickiness policy that was created using CreateAppCookieStickinessPolicy.

Sourcemodule AwsElbAppCookieStickinessPolicies = Awso_securityhub.Values.AwsElbAppCookieStickinessPolicies
Sourcemodule AwsElbLbCookieStickinessPolicy = Awso_securityhub.Values.AwsElbLbCookieStickinessPolicy

Contains information about a stickiness policy that was created using CreateLBCookieStickinessPolicy.

Sourcemodule AwsElbLbCookieStickinessPolicies = Awso_securityhub.Values.AwsElbLbCookieStickinessPolicies

Contains information about the access log configuration for the load balancer.

Sourcemodule AwsElbLoadBalancerAdditionalAttribute = Awso_securityhub.Values.AwsElbLoadBalancerAdditionalAttribute

Provides information about additional attributes for the load balancer.

Sourcemodule AwsElbLoadBalancerAdditionalAttributeList = Awso_securityhub.Values.AwsElbLoadBalancerAdditionalAttributeList
Sourcemodule AwsElbLoadBalancerCrossZoneLoadBalancing = Awso_securityhub.Values.AwsElbLoadBalancerCrossZoneLoadBalancing

Contains cross-zone load balancing settings for the load balancer.

Sourcemodule AwsElbLoadBalancerConnectionSettings = Awso_securityhub.Values.AwsElbLoadBalancerConnectionSettings

Contains connection settings for the load balancer.

Sourcemodule AwsElbLoadBalancerConnectionDraining = Awso_securityhub.Values.AwsElbLoadBalancerConnectionDraining

Contains information about the connection draining configuration for the load balancer.

Contains attributes for the load balancer.

Sourcemodule AwsElbLoadBalancerBackendServerDescription = Awso_securityhub.Values.AwsElbLoadBalancerBackendServerDescription

Provides information about the configuration of an EC2 instance for the load balancer.

Sourcemodule AwsElbLoadBalancerBackendServerDescriptions = Awso_securityhub.Values.AwsElbLoadBalancerBackendServerDescriptions
Sourcemodule AwsElbLoadBalancerSourceSecurityGroup = Awso_securityhub.Values.AwsElbLoadBalancerSourceSecurityGroup

Contains information about the security group for the load balancer.

Contains information about the policies for a load balancer.

Information about a load balancer listener.

Sourcemodule AwsElbLoadBalancerListenerDescription = Awso_securityhub.Values.AwsElbLoadBalancerListenerDescription

Lists the policies that are enabled for a load balancer listener.

Sourcemodule AwsElbLoadBalancerListenerDescriptions = Awso_securityhub.Values.AwsElbLoadBalancerListenerDescriptions

Provides information about an EC2 instance for a load balancer.

Contains information about the health checks that are conducted on the load balancer.

Contains details about a Classic Load Balancer.

A load balancer attribute.

Sourcemodule AwsElbv2LoadBalancerAttributes = Awso_securityhub.Values.AwsElbv2LoadBalancerAttributes

Information about the state of the load balancer.

Information about a load balancer.

Sourcemodule AwsEventSchemasRegistryDetails = Awso_securityhub.Values.AwsEventSchemasRegistryDetails

A schema defines the structure of events that are sent to Amazon EventBridge. Schema registries are containers for schemas. They collect and organize schemas so that your schemas are in logical groups.

Sourcemodule AwsEventsEndpointRoutingConfigFailoverConfigSecondaryDetails = Awso_securityhub.Values.AwsEventsEndpointRoutingConfigFailoverConfigSecondaryDetails

The Amazon Web Services Region that events are routed to when failover is triggered or event replication is enabled.

Sourcemodule AwsEventsEndpointRoutingConfigFailoverConfigPrimaryDetails = Awso_securityhub.Values.AwsEventsEndpointRoutingConfigFailoverConfigPrimaryDetails

Provides details about the primary Amazon Web Services Region of the endpoint.

Sourcemodule AwsEventsEndpointRoutingConfigFailoverConfigDetails = Awso_securityhub.Values.AwsEventsEndpointRoutingConfigFailoverConfigDetails

The failover configuration for an endpoint. This includes what triggers failover and what happens when it's triggered.

Sourcemodule AwsEventsEndpointRoutingConfigDetails = Awso_securityhub.Values.AwsEventsEndpointRoutingConfigDetails

Provides details about the routing configuration of the endpoint.

Sourcemodule AwsEventsEndpointReplicationConfigDetails = Awso_securityhub.Values.AwsEventsEndpointReplicationConfigDetails

Indicates whether replication is enabled or disabled for the endpoint. If enabled, the endpoint can replicate all events to a secondary Amazon Web Services Region.

Sourcemodule AwsEventsEndpointEventBusesDetails = Awso_securityhub.Values.AwsEventsEndpointEventBusesDetails

Provides details about the Amazon EventBridge event buses that the endpoint is associated with.

Sourcemodule AwsEventsEndpointEventBusesList = Awso_securityhub.Values.AwsEventsEndpointEventBusesList

Provides details about an Amazon EventBridge global endpoint. The endpoint can improve your application’s availability by making it Regional-fault tolerant.

Provides details about Amazon EventBridge event bus. An event bus is a router that receives events and delivers them to zero or more destinations, or targets. This can be a custom event bus which you can use to receive events from your custom applications and services, or it can be a partner event bus which can be matched to a partner event source.

Sourcemodule AwsGuardDutyDetectorDataSourcesCloudTrailDetails = Awso_securityhub.Values.AwsGuardDutyDetectorDataSourcesCloudTrailDetails

An object that contains information on the status of CloudTrail as a data source for the detector.

Sourcemodule AwsGuardDutyDetectorDataSourcesS3LogsDetails = Awso_securityhub.Values.AwsGuardDutyDetectorDataSourcesS3LogsDetails

An object that contains information on the status of S3 data event logs as a data source for the detector.

Sourcemodule AwsGuardDutyDetectorDataSourcesMalwareProtectionScanEc2InstanceWithFindingsEbsVolumesDetails = Awso_securityhub.Values.AwsGuardDutyDetectorDataSourcesMalwareProtectionScanEc2InstanceWithFindingsEbsVolumesDetails

Describes the configuration of scanning EBS volumes (Malware Protection) as a data source.

Sourcemodule AwsGuardDutyDetectorDataSourcesMalwareProtectionScanEc2InstanceWithFindingsDetails = Awso_securityhub.Values.AwsGuardDutyDetectorDataSourcesMalwareProtectionScanEc2InstanceWithFindingsDetails

Describes the configuration of Malware Protection for EC2 instances with findings.

Sourcemodule AwsGuardDutyDetectorDataSourcesMalwareProtectionDetails = Awso_securityhub.Values.AwsGuardDutyDetectorDataSourcesMalwareProtectionDetails

An object that contains information on the status of Malware Protection as a data source for the detector.

Sourcemodule AwsGuardDutyDetectorDataSourcesKubernetesAuditLogsDetails = Awso_securityhub.Values.AwsGuardDutyDetectorDataSourcesKubernetesAuditLogsDetails

An object that contains information on the status of Kubernetes audit logs as a data source for the detector.

Sourcemodule AwsGuardDutyDetectorDataSourcesKubernetesDetails = Awso_securityhub.Values.AwsGuardDutyDetectorDataSourcesKubernetesDetails

An object that contains information on the status of Kubernetes data sources for the detector.

Sourcemodule AwsGuardDutyDetectorDataSourcesFlowLogsDetails = Awso_securityhub.Values.AwsGuardDutyDetectorDataSourcesFlowLogsDetails

An object that contains information on the status of VPC Flow Logs as a data source for the detector.

Sourcemodule AwsGuardDutyDetectorDataSourcesDnsLogsDetails = Awso_securityhub.Values.AwsGuardDutyDetectorDataSourcesDnsLogsDetails

An object that contains information on the status of DNS logs as a data source for the detector.

Sourcemodule AwsGuardDutyDetectorDataSourcesDetails = Awso_securityhub.Values.AwsGuardDutyDetectorDataSourcesDetails

Describes which data sources are activated for the detector.

Sourcemodule AwsGuardDutyDetectorFeaturesDetails = Awso_securityhub.Values.AwsGuardDutyDetectorFeaturesDetails

Describes which features are activated for the detector.

Sourcemodule AwsGuardDutyDetectorFeaturesList = Awso_securityhub.Values.AwsGuardDutyDetectorFeaturesList

Provides details about an Amazon GuardDuty detector. A detector is an object that represents the GuardDuty service. A detector is required for GuardDuty to become operational.

Sourcemodule AwsIamAccessKeySessionContextSessionIssuer = Awso_securityhub.Values.AwsIamAccessKeySessionContextSessionIssuer

Information about the entity that created the session.

Sourcemodule AwsIamAccessKeySessionContextAttributes = Awso_securityhub.Values.AwsIamAccessKeySessionContextAttributes

Attributes of the session that the key was used for.

Provides information about the session that the key was used for.

IAM access key details related to a finding.

A managed policy that is attached to an IAM principal.

Sourcemodule AwsIamAttachedManagedPolicyList = Awso_securityhub.Values.AwsIamAttachedManagedPolicyList

A managed policy that is attached to the IAM group.

Contains details about an IAM group.

Sourcemodule AwsIamRoleAssumeRolePolicyDocument = Awso_securityhub.Values.AwsIamRoleAssumeRolePolicyDocument

Information about a role associated with an instance profile.

Information about an instance profile.

Information about the policy used to set the permissions boundary for an IAM principal.

A version of an IAM policy.

Represents an IAM permissions policy.

An inline policy that is embedded in the role.

Contains information about an IAM role, including all of the role's policies.

Information about an inline policy that is embedded in the user.

Information about an IAM user.

Sourcemodule AwsKinesisStreamStreamEncryptionDetails = Awso_securityhub.Values.AwsKinesisStreamStreamEncryptionDetails

Provides information about stream encryption.

Provides information about an Amazon Kinesis data stream.

Contains metadata about an KMS key.

The code for the Lambda function. You can specify either an object in Amazon S3, or upload a deployment package directly.

Sourcemodule AwsLambdaFunctionDeadLetterConfig = Awso_securityhub.Values.AwsLambdaFunctionDeadLetterConfig

The dead-letter queue for failed asynchronous invocations.

The VPC security groups and subnets that are attached to a Lambda function.

Sourcemodule AwsLambdaFunctionTracingConfig = Awso_securityhub.Values.AwsLambdaFunctionTracingConfig

The function's X-Ray tracing configuration.

An Lambda layer.

Sourcemodule AwsLambdaFunctionEnvironmentError = Awso_securityhub.Values.AwsLambdaFunctionEnvironmentError

Error messages for environment variables that could not be applied.

A function's environment variable settings.

Details about an Lambda function's configuration.

Details about a Lambda layer version.

Sourcemodule AwsMskClusterClusterInfoClientAuthenticationUnauthenticatedDetails = Awso_securityhub.Values.AwsMskClusterClusterInfoClientAuthenticationUnauthenticatedDetails

Provides details for allowing no client authentication.

Sourcemodule AwsMskClusterClusterInfoClientAuthenticationTlsDetails = Awso_securityhub.Values.AwsMskClusterClusterInfoClientAuthenticationTlsDetails

Provides details for client authentication using TLS.

Sourcemodule AwsMskClusterClusterInfoClientAuthenticationSaslScramDetails = Awso_securityhub.Values.AwsMskClusterClusterInfoClientAuthenticationSaslScramDetails

Details for SASL/SCRAM client authentication.

Sourcemodule AwsMskClusterClusterInfoClientAuthenticationSaslIamDetails = Awso_securityhub.Values.AwsMskClusterClusterInfoClientAuthenticationSaslIamDetails

Details for SASL/IAM client authentication.

Sourcemodule AwsMskClusterClusterInfoClientAuthenticationSaslDetails = Awso_securityhub.Values.AwsMskClusterClusterInfoClientAuthenticationSaslDetails

Provides details for client authentication using SASL.

Sourcemodule AwsMskClusterClusterInfoClientAuthenticationDetails = Awso_securityhub.Values.AwsMskClusterClusterInfoClientAuthenticationDetails

Provides details about different modes of client authentication.

Sourcemodule AwsMskClusterClusterInfoEncryptionInfoEncryptionInTransitDetails = Awso_securityhub.Values.AwsMskClusterClusterInfoEncryptionInfoEncryptionInTransitDetails

The settings for encrypting data in transit.

Sourcemodule AwsMskClusterClusterInfoEncryptionInfoEncryptionAtRestDetails = Awso_securityhub.Values.AwsMskClusterClusterInfoEncryptionInfoEncryptionAtRestDetails

The data-volume encryption details. You can't update encryption at rest settings for existing clusters.

Sourcemodule AwsMskClusterClusterInfoEncryptionInfoDetails = Awso_securityhub.Values.AwsMskClusterClusterInfoEncryptionInfoDetails

Includes encryption-related information, such as the KMS key used for encrypting data at rest and whether you want MSK to encrypt your data in transit.

Sourcemodule AwsMskClusterClusterInfoDetails = Awso_securityhub.Values.AwsMskClusterClusterInfoDetails

Provide details about an Amazon Managed Streaming for Apache Kafka (Amazon MSK) cluster.

Provides details about an Amazon Managed Streaming for Apache Kafka (Amazon MSK) cluster.

Sourcemodule AwsNetworkFirewallFirewallSubnetMappingsDetails = Awso_securityhub.Values.AwsNetworkFirewallFirewallSubnetMappingsDetails

A public subnet that Network Firewall uses for the firewall.

Sourcemodule AwsNetworkFirewallFirewallSubnetMappingsList = Awso_securityhub.Values.AwsNetworkFirewallFirewallSubnetMappingsList
Sourcemodule AwsNetworkFirewallFirewallDetails = Awso_securityhub.Values.AwsNetworkFirewallFirewallDetails

Details about an Network Firewall firewall.

Sourcemodule FirewallPolicyStatelessRuleGroupReferencesDetails = Awso_securityhub.Values.FirewallPolicyStatelessRuleGroupReferencesDetails

A stateless rule group that is used by the firewall policy.

Sourcemodule FirewallPolicyStatelessRuleGroupReferencesList = Awso_securityhub.Values.FirewallPolicyStatelessRuleGroupReferencesList
Sourcemodule StatelessCustomPublishMetricActionDimension = Awso_securityhub.Values.StatelessCustomPublishMetricActionDimension

Defines a CloudWatch dimension value to publish.

Sourcemodule StatelessCustomPublishMetricActionDimensionsList = Awso_securityhub.Values.StatelessCustomPublishMetricActionDimensionsList
Sourcemodule StatelessCustomPublishMetricAction = Awso_securityhub.Values.StatelessCustomPublishMetricAction

Information about metrics to publish to CloudWatch.

Sourcemodule StatelessCustomActionDefinition = Awso_securityhub.Values.StatelessCustomActionDefinition

The definition of a custom action that can be used for stateless packet handling.

Sourcemodule FirewallPolicyStatelessCustomActionsDetails = Awso_securityhub.Values.FirewallPolicyStatelessCustomActionsDetails

A custom action that can be used for stateless packet handling.

Sourcemodule FirewallPolicyStatelessCustomActionsList = Awso_securityhub.Values.FirewallPolicyStatelessCustomActionsList
Sourcemodule FirewallPolicyStatefulRuleGroupReferencesDetails = Awso_securityhub.Values.FirewallPolicyStatefulRuleGroupReferencesDetails

A stateful rule group that is used by the firewall policy.

Sourcemodule FirewallPolicyStatefulRuleGroupReferencesList = Awso_securityhub.Values.FirewallPolicyStatefulRuleGroupReferencesList

Defines the behavior of the firewall.

Sourcemodule AwsNetworkFirewallFirewallPolicyDetails = Awso_securityhub.Values.AwsNetworkFirewallFirewallPolicyDetails

Details about a firewall policy. A firewall policy defines the behavior of a network firewall.

Sourcemodule RuleGroupVariablesPortSetsDetails = Awso_securityhub.Values.RuleGroupVariablesPortSetsDetails

A list of port ranges.

Sourcemodule RuleGroupVariablesIpSetsDetails = Awso_securityhub.Values.RuleGroupVariablesIpSetsDetails

A list of IP addresses and address ranges, in CIDR notation.

Additional settings to use in the specified rules.

Sourcemodule RuleGroupSourceStatelessRuleMatchAttributesTcpFlags = Awso_securityhub.Values.RuleGroupSourceStatelessRuleMatchAttributesTcpFlags

A set of TCP flags and masks to inspect for.

Sourcemodule RuleGroupSourceStatelessRuleMatchAttributesTcpFlagsList = Awso_securityhub.Values.RuleGroupSourceStatelessRuleMatchAttributesTcpFlagsList
Sourcemodule RuleGroupSourceStatelessRuleMatchAttributesSources = Awso_securityhub.Values.RuleGroupSourceStatelessRuleMatchAttributesSources

A source IP addresses and address range to inspect for.

Sourcemodule RuleGroupSourceStatelessRuleMatchAttributesSourcesList = Awso_securityhub.Values.RuleGroupSourceStatelessRuleMatchAttributesSourcesList
Sourcemodule RuleGroupSourceStatelessRuleMatchAttributesSourcePorts = Awso_securityhub.Values.RuleGroupSourceStatelessRuleMatchAttributesSourcePorts

A port range to specify the source ports to inspect for.

Sourcemodule RuleGroupSourceStatelessRuleMatchAttributesSourcePortsList = Awso_securityhub.Values.RuleGroupSourceStatelessRuleMatchAttributesSourcePortsList
Sourcemodule RuleGroupSourceStatelessRuleMatchAttributesProtocolsList = Awso_securityhub.Values.RuleGroupSourceStatelessRuleMatchAttributesProtocolsList
Sourcemodule RuleGroupSourceStatelessRuleMatchAttributesDestinations = Awso_securityhub.Values.RuleGroupSourceStatelessRuleMatchAttributesDestinations

A destination IP address or range.

Sourcemodule RuleGroupSourceStatelessRuleMatchAttributesDestinationsList = Awso_securityhub.Values.RuleGroupSourceStatelessRuleMatchAttributesDestinationsList
Sourcemodule RuleGroupSourceStatelessRuleMatchAttributesDestinationPorts = Awso_securityhub.Values.RuleGroupSourceStatelessRuleMatchAttributesDestinationPorts

A port range to specify the destination ports to inspect for.

Sourcemodule RuleGroupSourceStatelessRuleMatchAttributesDestinationPortsList = Awso_securityhub.Values.RuleGroupSourceStatelessRuleMatchAttributesDestinationPortsList
Sourcemodule RuleGroupSourceStatelessRuleMatchAttributes = Awso_securityhub.Values.RuleGroupSourceStatelessRuleMatchAttributes

Criteria for the stateless rule.

Sourcemodule RuleGroupSourceStatelessRuleDefinition = Awso_securityhub.Values.RuleGroupSourceStatelessRuleDefinition

The definition of the stateless rule.

Sourcemodule RuleGroupSourceStatelessRulesDetails = Awso_securityhub.Values.RuleGroupSourceStatelessRulesDetails

A stateless rule in the rule group.

Sourcemodule RuleGroupSourceStatelessRulesList = Awso_securityhub.Values.RuleGroupSourceStatelessRulesList
Sourcemodule RuleGroupSourceCustomActionsDetails = Awso_securityhub.Values.RuleGroupSourceCustomActionsDetails

A custom action definition. A custom action is an optional, non-standard action to use for stateless packet handling.

Sourcemodule RuleGroupSourceCustomActionsList = Awso_securityhub.Values.RuleGroupSourceCustomActionsList
Sourcemodule RuleGroupSourceStatelessRulesAndCustomActionsDetails = Awso_securityhub.Values.RuleGroupSourceStatelessRulesAndCustomActionsDetails

Stateless rules and custom actions for a stateless rule group.

Sourcemodule RuleGroupSourceStatefulRulesRuleOptionsSettingsList = Awso_securityhub.Values.RuleGroupSourceStatefulRulesRuleOptionsSettingsList
Sourcemodule RuleGroupSourceStatefulRulesOptionsDetails = Awso_securityhub.Values.RuleGroupSourceStatefulRulesOptionsDetails

A rule option for a stateful rule.

Sourcemodule RuleGroupSourceStatefulRulesOptionsList = Awso_securityhub.Values.RuleGroupSourceStatefulRulesOptionsList
Sourcemodule RuleGroupSourceStatefulRulesHeaderDetails = Awso_securityhub.Values.RuleGroupSourceStatefulRulesHeaderDetails

The inspection criteria for a stateful rule.

Sourcemodule RuleGroupSourceStatefulRulesDetails = Awso_securityhub.Values.RuleGroupSourceStatefulRulesDetails

A Suricata rule specification.

Sourcemodule RuleGroupSourceStatefulRulesList = Awso_securityhub.Values.RuleGroupSourceStatefulRulesList

Stateful inspection criteria for a domain list rule group.

The rules and actions for the rule group.

Details about the rule group.

Sourcemodule AwsNetworkFirewallRuleGroupDetails = Awso_securityhub.Values.AwsNetworkFirewallRuleGroupDetails

Details about an Network Firewall rule group. Rule groups are used to inspect and control network traffic. Stateless rule groups apply to individual packets. Stateful rule groups apply to packets in the context of their traffic flow. Rule groups are referenced in firewall policies.

Sourcemodule AwsOpenSearchServiceDomainMasterUserOptionsDetails = Awso_securityhub.Values.AwsOpenSearchServiceDomainMasterUserOptionsDetails

Specifies information about the master user of the domain.

Sourcemodule AwsOpenSearchServiceDomainAdvancedSecurityOptionsDetails = Awso_securityhub.Values.AwsOpenSearchServiceDomainAdvancedSecurityOptionsDetails

Provides information about domain access control options.

Sourcemodule AwsOpenSearchServiceDomainClusterConfigZoneAwarenessConfigDetails = Awso_securityhub.Values.AwsOpenSearchServiceDomainClusterConfigZoneAwarenessConfigDetails

Configuration options for zone awareness.

Sourcemodule AwsOpenSearchServiceDomainClusterConfigDetails = Awso_securityhub.Values.AwsOpenSearchServiceDomainClusterConfigDetails

Details about the configuration of an OpenSearch cluster.

Sourcemodule AwsOpenSearchServiceDomainVpcOptionsDetails = Awso_securityhub.Values.AwsOpenSearchServiceDomainVpcOptionsDetails

Contains information that OpenSearch Service derives based on the VPCOptions for the domain.

Sourcemodule AwsOpenSearchServiceDomainServiceSoftwareOptionsDetails = Awso_securityhub.Values.AwsOpenSearchServiceDomainServiceSoftwareOptionsDetails

Provides information about the state of the domain relative to the latest service software.

Sourcemodule AwsOpenSearchServiceDomainNodeToNodeEncryptionOptionsDetails = Awso_securityhub.Values.AwsOpenSearchServiceDomainNodeToNodeEncryptionOptionsDetails

Provides details about the configuration for node-to-node encryption.

Sourcemodule AwsOpenSearchServiceDomainLogPublishingOption = Awso_securityhub.Values.AwsOpenSearchServiceDomainLogPublishingOption

Configuration details for a log publishing option.

Sourcemodule AwsOpenSearchServiceDomainLogPublishingOptionsDetails = Awso_securityhub.Values.AwsOpenSearchServiceDomainLogPublishingOptionsDetails

Configures the CloudWatch Logs to publish for the OpenSearch domain.

Sourcemodule AwsOpenSearchServiceDomainEncryptionAtRestOptionsDetails = Awso_securityhub.Values.AwsOpenSearchServiceDomainEncryptionAtRestOptionsDetails

Details about the configuration for encryption at rest for the OpenSearch domain.

Sourcemodule AwsOpenSearchServiceDomainDomainEndpointOptionsDetails = Awso_securityhub.Values.AwsOpenSearchServiceDomainDomainEndpointOptionsDetails

Information about additional options for the domain endpoint.

Sourcemodule AwsOpenSearchServiceDomainDetails = Awso_securityhub.Values.AwsOpenSearchServiceDomainDetails

Information about an Amazon OpenSearch Service domain.

Specifies an Organizations scope. Data from the specified organization or organizational unit is included in the response. To scope to a specific organizational unit, provide OrganizationalUnitId. You can optionally include OrganizationId. If you omit OrganizationId, Security Hub uses the caller's organization ID. To scope to the delegated administrator's entire organization, provide only OrganizationId. The organization ID and organizational unit must belong to the delegated administrator's own organization. Each request must use one scoping approach: either scope to the entire organization by providing an AwsOrganizationScope entry with only OrganizationId, or scope to specific organizational units by providing AwsOrganizationScope entries with OrganizationalUnitId. You can't combine both approaches in the same request.

An IAM role that is associated with the Amazon RDS DB cluster.

Sourcemodule AwsRdsDbClusterAssociatedRoles = Awso_securityhub.Values.AwsRdsDbClusterAssociatedRoles
Sourcemodule AwsRdsDbInstanceVpcSecurityGroup = Awso_securityhub.Values.AwsRdsDbInstanceVpcSecurityGroup

A VPC security groups that the DB instance belongs to.

Sourcemodule AwsRdsDbInstanceVpcSecurityGroups = Awso_securityhub.Values.AwsRdsDbInstanceVpcSecurityGroups

Information about an Active Directory domain membership record associated with the DB instance.

Sourcemodule AwsRdsDbClusterOptionGroupMembership = Awso_securityhub.Values.AwsRdsDbClusterOptionGroupMembership

Information about an option group membership for a DB cluster.

Sourcemodule AwsRdsDbClusterOptionGroupMemberships = Awso_securityhub.Values.AwsRdsDbClusterOptionGroupMemberships

Information about an instance in the DB cluster.

Information about an Amazon RDS DB cluster.

Sourcemodule AwsRdsDbClusterSnapshotDbClusterSnapshotAttribute = Awso_securityhub.Values.AwsRdsDbClusterSnapshotDbClusterSnapshotAttribute

Contains the name and values of a manual Amazon Relational Database Service (RDS) DB cluster snapshot attribute.

Sourcemodule AwsRdsDbClusterSnapshotDbClusterSnapshotAttributes = Awso_securityhub.Values.AwsRdsDbClusterSnapshotDbClusterSnapshotAttributes
Sourcemodule AwsRdsDbClusterSnapshotDetails = Awso_securityhub.Values.AwsRdsDbClusterSnapshotDetails

Information about an Amazon RDS DB cluster snapshot.

Sourcemodule AwsRdsDbInstanceAssociatedRole = Awso_securityhub.Values.AwsRdsDbInstanceAssociatedRole

An IAM role associated with the DB instance.

Sourcemodule AwsRdsDbInstanceAssociatedRoles = Awso_securityhub.Values.AwsRdsDbInstanceAssociatedRoles
Sourcemodule AwsRdsDbSubnetGroupSubnetAvailabilityZone = Awso_securityhub.Values.AwsRdsDbSubnetGroupSubnetAvailabilityZone

An Availability Zone for a subnet in a subnet group.

Information about a subnet in a subnet group.

Information about the subnet group for the database instance.

Information about the status of a read replica.

A processor feature.

Sourcemodule AwsRdsPendingCloudWatchLogsExports = Awso_securityhub.Values.AwsRdsPendingCloudWatchLogsExports

Identifies the log types to enable and disable.

Changes to a DB instance that are currently pending.

Provides information about a parameter group for a DB instance.

An option group membership.

Sourcemodule AwsRdsDbOptionGroupMemberships = Awso_securityhub.Values.AwsRdsDbOptionGroupMemberships

Specifies the connection endpoint.

Contains the details of an Amazon RDS DB instance.

IP range information for an RDS DB security group.

Sourcemodule AwsRdsDbSecurityGroupEc2SecurityGroup = Awso_securityhub.Values.AwsRdsDbSecurityGroupEc2SecurityGroup

EC2 security group information for an RDS DB security group.

Sourcemodule AwsRdsDbSecurityGroupEc2SecurityGroups = Awso_securityhub.Values.AwsRdsDbSecurityGroupEc2SecurityGroups

Provides information about an Amazon RDS DB security group.

Provides details about an Amazon RDS DB cluster snapshot.

Sourcemodule AwsRdsEventSubscriptionDetails = Awso_securityhub.Values.AwsRdsEventSubscriptionDetails

Details about an Amazon RDS event notification subscription. The subscription allows Amazon RDS to post events to an SNS topic.

A node in an Amazon Redshift cluster.

Sourcemodule AwsRedshiftClusterClusterNodes = Awso_securityhub.Values.AwsRedshiftClusterClusterNodes
Sourcemodule AwsRedshiftClusterClusterParameterStatus = Awso_securityhub.Values.AwsRedshiftClusterClusterParameterStatus

The status of a parameter in a cluster parameter group for an Amazon Redshift cluster.

Sourcemodule AwsRedshiftClusterClusterParameterStatusList = Awso_securityhub.Values.AwsRedshiftClusterClusterParameterStatusList
Sourcemodule AwsRedshiftClusterClusterParameterGroup = Awso_securityhub.Values.AwsRedshiftClusterClusterParameterGroup

A cluster parameter group that is associated with an Amazon Redshift cluster.

Sourcemodule AwsRedshiftClusterClusterParameterGroups = Awso_securityhub.Values.AwsRedshiftClusterClusterParameterGroups
Sourcemodule AwsRedshiftClusterClusterSecurityGroup = Awso_securityhub.Values.AwsRedshiftClusterClusterSecurityGroup

A security group that is associated with the cluster.

Sourcemodule AwsRedshiftClusterClusterSecurityGroups = Awso_securityhub.Values.AwsRedshiftClusterClusterSecurityGroups
Sourcemodule AwsRedshiftClusterClusterSnapshotCopyStatus = Awso_securityhub.Values.AwsRedshiftClusterClusterSnapshotCopyStatus

You can configure Amazon Redshift to copy snapshots for a cluster to another Amazon Web Services Region. This parameter provides information about a cross-Region snapshot copy.

Sourcemodule AwsRedshiftClusterDeferredMaintenanceWindow = Awso_securityhub.Values.AwsRedshiftClusterDeferredMaintenanceWindow

A time windows during which maintenance was deferred for an Amazon Redshift cluster.

Sourcemodule AwsRedshiftClusterDeferredMaintenanceWindows = Awso_securityhub.Values.AwsRedshiftClusterDeferredMaintenanceWindows
Sourcemodule AwsRedshiftClusterVpcSecurityGroup = Awso_securityhub.Values.AwsRedshiftClusterVpcSecurityGroup

A VPC security group that the cluster belongs to, if the cluster is in a VPC.

Sourcemodule AwsRedshiftClusterVpcSecurityGroups = Awso_securityhub.Values.AwsRedshiftClusterVpcSecurityGroups
Sourcemodule AwsRedshiftClusterRestoreStatus = Awso_securityhub.Values.AwsRedshiftClusterRestoreStatus

Information about the status of a cluster restore action. It only applies if the cluster was created by restoring a snapshot.

Information about the resize operation for the cluster.

Sourcemodule AwsRedshiftClusterPendingModifiedValues = Awso_securityhub.Values.AwsRedshiftClusterPendingModifiedValues

Changes to the Amazon Redshift cluster that are currently pending.

Sourcemodule AwsRedshiftClusterLoggingStatus = Awso_securityhub.Values.AwsRedshiftClusterLoggingStatus

Provides information about the logging status of the cluster.

An IAM role that the cluster can use to access other Amazon Web Services services.

Information about whether an Amazon Redshift cluster finished applying any hardware changes to security module (HSM) settings that were specified in a modify cluster command.

The connection endpoint for an Amazon Redshift cluster.

Sourcemodule AwsRedshiftClusterElasticIpStatus = Awso_securityhub.Values.AwsRedshiftClusterElasticIpStatus

The status of the elastic IP (EIP) address for an Amazon Redshift cluster.

Details about an Amazon Redshift cluster.

Sourcemodule AwsRoute53HostedZoneConfigDetails = Awso_securityhub.Values.AwsRoute53HostedZoneConfigDetails

An object that contains an optional comment about your Amazon Route 53 hosted zone.

Sourcemodule CloudWatchLogsLogGroupArnConfigDetails = Awso_securityhub.Values.CloudWatchLogsLogGroupArnConfigDetails

The Amazon Resource Name (ARN) and other details of the Amazon CloudWatch Logs log group that Amazon Route 53 is publishing logs to.

Sourcemodule AwsRoute53QueryLoggingConfigDetails = Awso_securityhub.Values.AwsRoute53QueryLoggingConfigDetails

Provides details about a specified Amazon Route 53 configuration for DNS query logging.

Sourcemodule AwsRoute53HostedZoneVpcDetails = Awso_securityhub.Values.AwsRoute53HostedZoneVpcDetails

For private hosted zones, this is a complex type that contains information about an Amazon VPC.

Sourcemodule AwsRoute53HostedZoneObjectDetails = Awso_securityhub.Values.AwsRoute53HostedZoneObjectDetails

An object that contains information about an Amazon Route 53 hosted zone.

Sourcemodule AwsRoute53HostedZoneNameServersList = Awso_securityhub.Values.AwsRoute53HostedZoneNameServersList

Provides details about a specified Amazon Route 53 hosted zone, including the four name servers assigned to the hosted zone. A hosted zone represents a collection of records that can be managed together, belonging to a single parent domain name.

Sourcemodule AwsS3AccountPublicAccessBlockDetails = Awso_securityhub.Values.AwsS3AccountPublicAccessBlockDetails

provides information about the Amazon S3 Public Access Block configuration for accounts.

Sourcemodule AwsS3AccessPointVpcConfigurationDetails = Awso_securityhub.Values.AwsS3AccessPointVpcConfigurationDetails

The virtual private cloud (VPC) configuration for an Amazon S3 access point.

Returns configuration information about the specified Amazon S3 access point. S3 access points are named network endpoints that are attached to buckets that you can use to perform S3 object operations.

Sourcemodule AwsS3BucketBucketLifecycleConfigurationRulesTransitionsDetails = Awso_securityhub.Values.AwsS3BucketBucketLifecycleConfigurationRulesTransitionsDetails

A rule for when objects transition to specific storage classes.

Sourcemodule AwsS3BucketBucketLifecycleConfigurationRulesTransitionsList = Awso_securityhub.Values.AwsS3BucketBucketLifecycleConfigurationRulesTransitionsList
Sourcemodule AwsS3BucketBucketLifecycleConfigurationRulesNoncurrentVersionTransitionsDetails = Awso_securityhub.Values.AwsS3BucketBucketLifecycleConfigurationRulesNoncurrentVersionTransitionsDetails

A transition rule that describes when noncurrent objects transition to a specified storage class.

Sourcemodule AwsS3BucketBucketLifecycleConfigurationRulesNoncurrentVersionTransitionsList = Awso_securityhub.Values.AwsS3BucketBucketLifecycleConfigurationRulesNoncurrentVersionTransitionsList
Sourcemodule AwsS3BucketBucketLifecycleConfigurationRulesFilterPredicateTagDetails = Awso_securityhub.Values.AwsS3BucketBucketLifecycleConfigurationRulesFilterPredicateTagDetails

A tag filter.

Sourcemodule AwsS3BucketBucketLifecycleConfigurationRulesFilterPredicateOperandsTagDetails = Awso_securityhub.Values.AwsS3BucketBucketLifecycleConfigurationRulesFilterPredicateOperandsTagDetails

A tag that is assigned to matching objects.

Sourcemodule AwsS3BucketBucketLifecycleConfigurationRulesFilterPredicateOperandsDetails = Awso_securityhub.Values.AwsS3BucketBucketLifecycleConfigurationRulesFilterPredicateOperandsDetails

A value to use for the filter.

Sourcemodule AwsS3BucketBucketLifecycleConfigurationRulesFilterPredicateOperandsList = Awso_securityhub.Values.AwsS3BucketBucketLifecycleConfigurationRulesFilterPredicateOperandsList
Sourcemodule AwsS3BucketBucketLifecycleConfigurationRulesFilterPredicateDetails = Awso_securityhub.Values.AwsS3BucketBucketLifecycleConfigurationRulesFilterPredicateDetails

The configuration for the filter.

Sourcemodule AwsS3BucketBucketLifecycleConfigurationRulesFilterDetails = Awso_securityhub.Values.AwsS3BucketBucketLifecycleConfigurationRulesFilterDetails

Identifies the objects that a rule applies to.

Sourcemodule AwsS3BucketBucketLifecycleConfigurationRulesAbortIncompleteMultipartUploadDetails = Awso_securityhub.Values.AwsS3BucketBucketLifecycleConfigurationRulesAbortIncompleteMultipartUploadDetails

Information about what Amazon S3 does when a multipart upload is incomplete.

Sourcemodule AwsS3BucketBucketLifecycleConfigurationRulesDetails = Awso_securityhub.Values.AwsS3BucketBucketLifecycleConfigurationRulesDetails

Configuration for a lifecycle rule.

Sourcemodule AwsS3BucketBucketLifecycleConfigurationRulesList = Awso_securityhub.Values.AwsS3BucketBucketLifecycleConfigurationRulesList
Sourcemodule AwsS3BucketBucketLifecycleConfigurationDetails = Awso_securityhub.Values.AwsS3BucketBucketLifecycleConfigurationDetails

The lifecycle configuration for the objects in the S3 bucket.

Sourcemodule AwsS3BucketBucketVersioningConfiguration = Awso_securityhub.Values.AwsS3BucketBucketVersioningConfiguration

Describes the versioning state of an S3 bucket.

Sourcemodule AwsS3BucketWebsiteConfigurationRoutingRuleRedirect = Awso_securityhub.Values.AwsS3BucketWebsiteConfigurationRoutingRuleRedirect

The rules to redirect the request if the condition in Condition is met.

Sourcemodule AwsS3BucketWebsiteConfigurationRoutingRuleCondition = Awso_securityhub.Values.AwsS3BucketWebsiteConfigurationRoutingRuleCondition

The condition that must be met in order to apply the routing rule.

Sourcemodule AwsS3BucketWebsiteConfigurationRoutingRule = Awso_securityhub.Values.AwsS3BucketWebsiteConfigurationRoutingRule

A rule for redirecting requests to the website.

Sourcemodule AwsS3BucketWebsiteConfigurationRoutingRules = Awso_securityhub.Values.AwsS3BucketWebsiteConfigurationRoutingRules
Sourcemodule AwsS3BucketWebsiteConfigurationRedirectTo = Awso_securityhub.Values.AwsS3BucketWebsiteConfigurationRedirectTo

The redirect behavior for requests to the website.

Sourcemodule AwsS3BucketWebsiteConfiguration = Awso_securityhub.Values.AwsS3BucketWebsiteConfiguration

Website parameters for the S3 bucket.

Sourcemodule AwsS3BucketServerSideEncryptionByDefault = Awso_securityhub.Values.AwsS3BucketServerSideEncryptionByDefault

Specifies the default server-side encryption to apply to new objects in the bucket.

Sourcemodule AwsS3BucketServerSideEncryptionRule = Awso_securityhub.Values.AwsS3BucketServerSideEncryptionRule

An encryption rule to apply to the S3 bucket.

Sourcemodule AwsS3BucketServerSideEncryptionRules = Awso_securityhub.Values.AwsS3BucketServerSideEncryptionRules
Sourcemodule AwsS3BucketServerSideEncryptionConfiguration = Awso_securityhub.Values.AwsS3BucketServerSideEncryptionConfiguration

The encryption configuration for the S3 bucket.

Sourcemodule AwsS3BucketObjectLockConfigurationRuleDefaultRetentionDetails = Awso_securityhub.Values.AwsS3BucketObjectLockConfigurationRuleDefaultRetentionDetails

The default S3 Object Lock retention mode and period that you want to apply to new objects placed in the specified Amazon S3 bucket.

Sourcemodule AwsS3BucketObjectLockConfigurationRuleDetails = Awso_securityhub.Values.AwsS3BucketObjectLockConfigurationRuleDetails

Specifies the S3 Object Lock rule for the specified object. In Amazon S3, Object Lock can help prevent objects from being deleted or overwritten for a fixed amount of time or indefinitely.

Sourcemodule AwsS3BucketObjectLockConfiguration = Awso_securityhub.Values.AwsS3BucketObjectLockConfiguration

The container element for S3 Object Lock configuration parameters. In Amazon S3, Object Lock can help prevent objects from being deleted or overwritten for a fixed amount of time or indefinitely.

Sourcemodule AwsS3BucketNotificationConfigurationS3KeyFilterRuleName = Awso_securityhub.Values.AwsS3BucketNotificationConfigurationS3KeyFilterRuleName
Sourcemodule AwsS3BucketNotificationConfigurationS3KeyFilterRule = Awso_securityhub.Values.AwsS3BucketNotificationConfigurationS3KeyFilterRule

Details for a filter rule.

Sourcemodule AwsS3BucketNotificationConfigurationS3KeyFilterRules = Awso_securityhub.Values.AwsS3BucketNotificationConfigurationS3KeyFilterRules
Sourcemodule AwsS3BucketNotificationConfigurationS3KeyFilter = Awso_securityhub.Values.AwsS3BucketNotificationConfigurationS3KeyFilter

Details for an Amazon S3 filter.

Sourcemodule AwsS3BucketNotificationConfigurationFilter = Awso_securityhub.Values.AwsS3BucketNotificationConfigurationFilter

Filtering information for the notifications. The filtering is based on Amazon S3 key names.

Sourcemodule AwsS3BucketNotificationConfigurationEvents = Awso_securityhub.Values.AwsS3BucketNotificationConfigurationEvents
Sourcemodule AwsS3BucketNotificationConfigurationDetail = Awso_securityhub.Values.AwsS3BucketNotificationConfigurationDetail

Details for an S3 bucket notification configuration.

Sourcemodule AwsS3BucketNotificationConfigurationDetails = Awso_securityhub.Values.AwsS3BucketNotificationConfigurationDetails
Sourcemodule AwsS3BucketNotificationConfiguration = Awso_securityhub.Values.AwsS3BucketNotificationConfiguration

The notification configuration for the S3 bucket.

Sourcemodule AwsS3BucketLoggingConfiguration = Awso_securityhub.Values.AwsS3BucketLoggingConfiguration

Information about logging for the S3 bucket

The details of an Amazon Simple Storage Service (Amazon S3) bucket.

Details about an Amazon S3 object.

Sourcemodule AwsSageMakerNotebookInstanceMetadataServiceConfigurationDetails = Awso_securityhub.Values.AwsSageMakerNotebookInstanceMetadataServiceConfigurationDetails

Information on the instance metadata service (IMDS) configuration of the notebook instance.

Sourcemodule AwsSageMakerNotebookInstanceDetails = Awso_securityhub.Values.AwsSageMakerNotebookInstanceDetails

Provides details about an Amazon SageMaker AI notebook instance.

Sourcemodule AwsSecretsManagerSecretRotationRules = Awso_securityhub.Values.AwsSecretsManagerSecretRotationRules

Defines the rotation schedule for the secret.

Sourcemodule AwsSecretsManagerSecretDetails = Awso_securityhub.Values.AwsSecretsManagerSecretDetails

Details about an Secrets Manager secret.

Provides details about the status of the investigation into a finding.

A vendor that generates a vulnerability report.

Provides details about where a code vulnerability is located in your Lambda function.

Sourcemodule VulnerabilityCodeVulnerabilities = Awso_securityhub.Values.VulnerabilityCodeVulnerabilities

Provides details about the vulnerabilities found in your Lambda function code. This field pertains to findings that Security Hub CSPM receives from Amazon Inspector.

Sourcemodule VulnerabilityCodeVulnerabilitiesList = Awso_securityhub.Values.VulnerabilityCodeVulnerabilitiesList

Information about a software package.

CVSS scores from the advisory related to the vulnerability.

A vulnerability associated with a finding.

Provides information about the file paths that were affected by the threat.

Provides information about the threat detected in a security finding and the file paths that were affected by the threat.

Details about the threat intelligence related to a finding.

The severity of the finding. The finding provider can provide the initial severity. The finding provider can only update the severity if it hasn't been updated using BatchUpdateFindings. The finding must have either Label or Normalized populated. If only one of these attributes is populated, then Security Hub CSPM automatically populates the other one. If neither attribute is populated, then the finding is invalid. Label is the preferred attribute.

Describes the mounting of a volume in a container.

Container details related to a finding.

Details about an external code repository with which you can connect your Amazon Web Services resources. The connection is established through Amazon Inspector.

Sourcemodule AwsXrayEncryptionConfigDetails = Awso_securityhub.Values.AwsXrayEncryptionConfigDetails

Information about the encryption configuration for X-Ray.

Sourcemodule AwsWafv2WebAclCaptchaConfigImmunityTimePropertyDetails = Awso_securityhub.Values.AwsWafv2WebAclCaptchaConfigImmunityTimePropertyDetails

Used for CAPTCHA and challenge token settings. Determines how long a CAPTCHA or challenge timestamp remains valid after WAF updates it for a successful CAPTCHA or challenge response.

Sourcemodule AwsWafv2WebAclCaptchaConfigDetails = Awso_securityhub.Values.AwsWafv2WebAclCaptchaConfigDetails

Specifies how WAF should handle CAPTCHA evaluations for rules that don't have their own CaptchaConfig settings.

A custom header for custom request and response handling.

A custom response to send to the client. You can define a custom response for rule actions and default web ACL actions that are set to block.

Specifies that WAF should block the request and optionally defines additional custom handling for the response to the web request.

Sourcemodule AwsWafv2CustomRequestHandlingDetails = Awso_securityhub.Values.AwsWafv2CustomRequestHandlingDetails

Custom request handling behavior that inserts custom headers into a web request. WAF uses custom request handling when the rule action doesn't block the request.

Specifies that WAF should allow the request and optionally defines additional custom handling for the request.

Specifies the action that Amazon CloudFront or WAF takes when a web request matches the conditions in the rule.

Sourcemodule AwsWafv2VisibilityConfigDetails = Awso_securityhub.Values.AwsWafv2VisibilityConfigDetails

Defines and enables Amazon CloudWatch metrics and web request sample collection.

Sourcemodule AwsWafv2RulesActionCountDetails = Awso_securityhub.Values.AwsWafv2RulesActionCountDetails

Specifies that WAF should count the request.

Sourcemodule AwsWafv2RulesActionCaptchaDetails = Awso_securityhub.Values.AwsWafv2RulesActionCaptchaDetails

Specifies that WAF should run a CAPTCHA check against the request.

The action that WAF should take on a web request when it matches a rule's statement. Settings at the web ACL level can override the rule action setting.

Provides details about rules in a rule group. A rule identifies web requests that you want to allow, block, or count. Each rule includes one top-level Statement that WAF uses to identify matching web requests, and parameters that govern how WAF handles them.

Details about an WAFv2 web Access Control List (ACL).

Details about an WAFv2 rule group.

Details about an override action for a rule.

Details about a rule to exclude from a rule group.

Details about the action that CloudFront or WAF takes when a web request matches the conditions in the rule.

Details for a rule in an WAF web ACL.

Provides information about an WAF web access control list (web ACL).

Sourcemodule AwsWafRuleGroupRulesActionDetails = Awso_securityhub.Values.AwsWafRuleGroupRulesActionDetails

Provides information about what action WAF should take on a web request when it matches the criteria defined in the rule.

Provides information about the rules attached to the rule group. These rules identify the web requests that you want to allow, block, or count.

Provides information about an WAF rule group. A rule group is a collection of rules for inspecting and controlling web requests.

Sourcemodule AwsWafRulePredicateListDetails = Awso_securityhub.Values.AwsWafRulePredicateListDetails

Provides details about the ByteMatchSet, IPSet, SqlInjectionMatchSet, XssMatchSet, RegexMatchSet, GeoMatchSet, and SizeConstraintSet objects that you want to add to a rule and, for each object, indicates whether you want to negate the settings.

Provides information about a WAF rule. This rule specifies the web requests that you want to allow, block, or count.

Sourcemodule AwsWafRegionalWebAclRulesListOverrideActionDetails = Awso_securityhub.Values.AwsWafRegionalWebAclRulesListOverrideActionDetails

Provides details about the action to use in the place of the action that results from the rule group evaluation.

Sourcemodule AwsWafRegionalWebAclRulesListActionDetails = Awso_securityhub.Values.AwsWafRegionalWebAclRulesListActionDetails

The action that WAF takes when a web request matches all conditions in the rule, such as allow, block, or count the request.

Sourcemodule AwsWafRegionalWebAclRulesListDetails = Awso_securityhub.Values.AwsWafRegionalWebAclRulesListDetails

A combination of ByteMatchSet, IPSet, and/or SqlInjectionMatchSet objects that identify the web requests that you want to allow, block, or count.

Provides information about the web access control list (web ACL). The web ACL contains the rules that identify the requests that you want to allow, block, or count.

Sourcemodule AwsWafRegionalRuleGroupRulesActionDetails = Awso_securityhub.Values.AwsWafRegionalRuleGroupRulesActionDetails

Describes the action that WAF should take on a web request when it matches the criteria defined in the rule.

Sourcemodule AwsWafRegionalRuleGroupRulesDetails = Awso_securityhub.Values.AwsWafRegionalRuleGroupRulesDetails

Provides information about the rules attached to a rule group

Sourcemodule AwsWafRegionalRuleGroupRulesList = Awso_securityhub.Values.AwsWafRegionalRuleGroupRulesList
Sourcemodule AwsWafRegionalRuleGroupDetails = Awso_securityhub.Values.AwsWafRegionalRuleGroupDetails

Provides information about an WAF Regional rule group. The rule group is a collection of rules for inspecting and controlling web requests.

Sourcemodule AwsWafRegionalRulePredicateListDetails = Awso_securityhub.Values.AwsWafRegionalRulePredicateListDetails

Provides details about the ByteMatchSet, IPSet, SqlInjectionMatchSet, XssMatchSet, RegexMatchSet, GeoMatchSet, and SizeConstraintSet objects that you want to add to a rule and, for each object, indicates whether you want to negate the settings.

Sourcemodule AwsWafRegionalRulePredicateList = Awso_securityhub.Values.AwsWafRegionalRulePredicateList

Provides information about an WAF Regional rule. This rule identifies the web requests that you want to allow, block, or count.

Sourcemodule AwsWafRegionalRateBasedRuleMatchPredicate = Awso_securityhub.Values.AwsWafRegionalRateBasedRuleMatchPredicate

Details for a match predicate. A predicate might look for characteristics such as specific IP addresses, geographic locations, or sizes.

Sourcemodule AwsWafRegionalRateBasedRuleMatchPredicateList = Awso_securityhub.Values.AwsWafRegionalRateBasedRuleMatchPredicateList
Sourcemodule AwsWafRegionalRateBasedRuleDetails = Awso_securityhub.Values.AwsWafRegionalRateBasedRuleDetails

contains details about a rate-based rule for Regional resources. A rate-based rule provides settings to indicate when to allow, block, or count a request. Rate-based rules include the number of requests that arrive over a specified period of time.

Sourcemodule AwsWafRateBasedRuleMatchPredicate = Awso_securityhub.Values.AwsWafRateBasedRuleMatchPredicate

A match predicate. A predicate might look for characteristics such as specific IP addresses, geographic locations, or sizes.

Sourcemodule AwsWafRateBasedRuleMatchPredicateList = Awso_securityhub.Values.AwsWafRateBasedRuleMatchPredicateList

Details about a rate-based rule for global resources. A rate-based rule provides settings to indicate when to allow, block, or count a request. Rate-based rules include the number of requests that arrive over a specified period of time.

Sourcemodule AwsStepFunctionStateMachineTracingConfigurationDetails = Awso_securityhub.Values.AwsStepFunctionStateMachineTracingConfigurationDetails

Specifies whether X-Ray tracing is enabled.

Sourcemodule AwsStepFunctionStateMachineLoggingConfigurationDestinationsCloudWatchLogsLogGroupDetails = Awso_securityhub.Values.AwsStepFunctionStateMachineLoggingConfigurationDestinationsCloudWatchLogsLogGroupDetails

An object describing a CloudWatch log group. For more information, see Amazon Web Services::Logs::LogGroup in the CloudFormation User Guide.

Sourcemodule AwsStepFunctionStateMachineLoggingConfigurationDestinationsDetails = Awso_securityhub.Values.AwsStepFunctionStateMachineLoggingConfigurationDestinationsDetails

An array of objects that describes where your execution history events will be logged.

Sourcemodule AwsStepFunctionStateMachineLoggingConfigurationDestinationsList = Awso_securityhub.Values.AwsStepFunctionStateMachineLoggingConfigurationDestinationsList
Sourcemodule AwsStepFunctionStateMachineLoggingConfigurationDetails = Awso_securityhub.Values.AwsStepFunctionStateMachineLoggingConfigurationDetails

The LoggingConfiguration data type is used to set CloudWatch Logs options.

Sourcemodule AwsStepFunctionStateMachineDetails = Awso_securityhub.Values.AwsStepFunctionStateMachineDetails

Provides details about an Step Functions state machine, which is a workflow consisting of a series of event- driven steps.

Provides the details about the compliance status for a patch.

Provides details about the compliance for a patch.

Provides information about the state of a patch on an instance based on the patch baseline that was used to patch the instance.

Data about a queue.

A wrapper type for the attributes of an Amazon SNS subscription.

Provides information about an Amazon SNS topic to which notifications can be published.

Additional details about a resource related to a finding. To provide the details, use the object that corresponds to the resource type. For example, if the resource type is AwsEc2Instance, then you use the AwsEc2Instance object to provide the details. If the type-specific object does not contain all of the fields you want to populate, then you use the Other object to populate those additional fields. You also use the Other object to populate the details when the selected type does not have a corresponding object.

An occurrence of sensitive data in an Apache Avro object container or an Apache Parquet file.

Identifies where the sensitive data begins and ends.

Sourcemodule Page = Awso_securityhub.Values.Page

An occurrence of sensitive data in an Adobe Portable Document Format (PDF) file.

An occurrence of sensitive data detected in a Microsoft Excel workbook, comma-separated value (CSV) file, or tab-separated value (TSV) file.

The detected occurrences of sensitive data.

The list of detected instances of sensitive data.

Contains a detected instance of sensitive data that are based on built-in identifiers.

Sourcemodule CustomDataIdentifiersDetections = Awso_securityhub.Values.CustomDataIdentifiersDetections

The list of detected instances of sensitive data.

Sourcemodule CustomDataIdentifiersDetectionsList = Awso_securityhub.Values.CustomDataIdentifiersDetectionsList

Contains an instance of sensitive data that was detected by a customer-defined identifier.

Provides details about the current status of the sensitive data detection.

Details about the sensitive data that was detected on the resource.

Provides details about sensitive data that was detected on a resource.

A resource related to a finding.

A recommendation on how to remediate the issue identified in a finding.

Details about the remediation steps for a finding.

The details of process-related information about a finding.

Provides an overview of the patch compliance status for an instance against a selected compliance standard.

A user-defined note added to a finding.

A range of ports.

Information about the destination of the next component in the network path.

Details about a network path component that occurs before or after the current component.

Information about a network path component.

The details of network-related information about a finding.

A list of malware related to a finding.

Provides metadata for the Amazon CodeGuru detector associated with a finding. This field pertains to findings that relate to Lambda functions. Amazon Inspector identifies policy violations and vulnerabilities in Lambda function code based on internal detectors developed in collaboration with Amazon CodeGuru. Security Hub CSPM receives those findings.

The severity assigned to a finding by the finding provider. This object may include one or more of the following attributes: Label Normalized Original Product If a BatchImportFindings request for a new finding only provides Label or only provides Normalized, Security Hub CSPM automatically populates the value of the other field. The Normalized and Product attributes are included in the FindingProviderSeverity structure to preserve the historical information associated with the finding, even if the top-level Severity object is later modified using the BatchUpdateFindings operation. If the top-level Finding.Severity object is present, but Finding.FindingProviderFields isn't present, Security Hub CSPM creates the FindingProviderFields.Severity object and copies the entire Finding.Severity object into it. This ensures that the original, provider-supplied details are retained within the FindingProviderFields.Severity object, even if the top-level Severity object is overwritten.

In a BatchImportFindings request, finding providers use FindingProviderFields to provide and update values for the following fields: Confidence Criticality RelatedFindings Severity Types The preceding fields are nested under the FindingProviderFields object, but also have analogues of the same name as top-level ASFF fields. When a new finding is sent to Security Hub CSPM by a finding provider, Security Hub CSPM populates the FindingProviderFields object automatically, if it is empty, based on the corresponding top-level fields. Finding providers can update FindingProviderFields only by using the BatchImportFindings operation. Finding providers can't update this object with the BatchUpdateFindings operation. Customers can update the top-level fields by using the BatchUpdateFindings operation. Customers can't update FindingProviderFields. For information about how Security Hub CSPM handles updates from BatchImportFindings to FindingProviderFields and to the corresponding top-level attributes, see Using FindingProviderFields in the Security Hub CSPM User Guide.

Contains information about the indicators observed in an Amazon GuardDuty Extended Threat Detection attack sequence. Indicators include a set of signals, which can be API activities or findings that GuardDuty uses to detect an attack sequence finding. GuardDuty generates an attack sequence finding when multiple signals align to a potentially suspicious activity. To receive GuardDuty attack sequence findings in Security Hub CSPM, you must have GuardDuty and GuardDuty S3 Protection enabled. For more information, see GuardDuty Extended Threat Detection in the Amazon GuardDuty User Guide.

Contains information about the signals involved in an Amazon GuardDuty Extended Threat Detection attack sequence. An attack sequence is a type of threat detected by GuardDuty. GuardDuty generates an attack sequence finding when multiple events, or signals, align to a potentially suspicious activity. When GuardDuty and Security Hub CSPM are integrated, GuardDuty sends attack sequence findings to Security Hub CSPM. A signal can be an API activity or a finding that GuardDuty uses to detect an attack sequence finding.

Contains information about the location of a network endpoint involved in an Amazon GuardDuty Extended Threat Detection attack sequence. GuardDuty generates an attack sequence finding when multiple events align to a potentially suspicious activity. To receive GuardDuty attack sequence findings in Security Hub CSPM, you must have GuardDuty enabled. For more information, see GuardDuty Extended Threat Detection in the Amazon GuardDuty User Guide.

Contains information about the network connection involved in an Amazon GuardDuty Extended Threat Detection attack sequence. GuardDuty generates an attack sequence finding when multiple events align to a potentially suspicious activity. To receive GuardDuty attack sequence findings in Security Hub CSPM, you must have GuardDuty enabled. For more information, see GuardDuty Extended Threat Detection in the Amazon GuardDuty User Guide.

Contains information about the Autonomous System (AS) of the network endpoints involved in an Amazon GuardDuty Extended Threat Detection attack sequence. GuardDuty generates an attack sequence finding when multiple events align to a potentially suspicious activity. To receive GuardDuty attack sequence findings in Security Hub CSPM, you must have GuardDuty enabled. For more information, see GuardDuty Extended Threat Detection in the Amazon GuardDuty User Guide.

Contains information about network endpoints involved in an Amazon GuardDuty Extended Threat Detection attack sequence. GuardDuty generates an attack sequence finding when multiple events align to a potentially suspicious activity. To receive GuardDuty attack sequence findings in Security Hub CSPM, you must have GuardDuty enabled. For more information, see GuardDuty Extended Threat Detection in the Amazon GuardDuty User Guide. This field can provide information about the network endpoints associated with the resource in the attack sequence finding, or about a specific network endpoint used for the attack.

Contains information about an Amazon GuardDuty Extended Threat Detection attack sequence finding. GuardDuty generates an attack sequence finding when multiple events align to a potentially suspicious activity. To receive GuardDuty attack sequence findings in Security Hub CSPM, you must have GuardDuty enabled. For more information, see GuardDuty Extended Threat Detection in the Amazon GuardDuty User Guide.

A top-level object field that provides details about an Amazon GuardDuty Extended Threat Detection attack sequence. GuardDuty generates an attack sequence finding when multiple events align to a potentially suspicious activity. To receive GuardDuty attack sequence findings in Security Hub CSPM, you must have GuardDuty enabled. For more information, see GuardDuty Extended Threat Detection in the Amazon GuardDuty User Guide.

Provides additional context for the value of Compliance.Status.

A parameter that a security control accepts.

This object typically provides details about a control finding, such as applicable standards and the status of control checks. While finding providers can add custom content in Compliance object fields, they are typically used to review details of Security Hub CSPM control findings.

Provides a consistent format for Security Hub CSPM findings. AwsSecurityFinding format allows you to share findings between Amazon Web Services security services and third-party solutions. A finding is a potential security issue generated either by Amazon Web Services services or by the integrated third-party solutions and standards checks.

A keyword filter for querying findings.

The IP filter for querying findings.

Boolean filter for querying findings.

A collection of filters that are applied to all active findings aggregated by Security Hub CSPM. You can filter by up to ten finding attributes. For each attribute, you can provide up to 20 filter values.

Identifies which finding to get the finding history for.

Sourcemodule AwsSecurityFindingIdentifierList = Awso_securityhub.Values.AwsSecurityFindingIdentifierList
Sourcemodule BatchDeleteAutomationRulesRequest = Awso_securityhub.Values.BatchDeleteAutomationRulesRequest

Deletes one or more automation rules.

A list of objects containing RuleArn, ErrorCode, and ErrorMessage. This parameter tells you which automation rules the request didn't process and why.

Sourcemodule UnprocessedAutomationRulesList = Awso_securityhub.Values.UnprocessedAutomationRulesList
Sourcemodule BatchDeleteAutomationRulesResponse = Awso_securityhub.Values.BatchDeleteAutomationRulesResponse

Deletes one or more automation rules.

Disables the standards specified by the provided StandardsSubscriptionArns. For more information, see Security Standards section of the Security Hub CSPM User Guide.

The reason for the current status of your subscription to the standard.

A resource that represents your subscription to a supported standard.

Disables the standards specified by the provided StandardsSubscriptionArns. For more information, see Security Standards section of the Security Hub CSPM User Guide.

The standard that you want to enable.

Enables the standards specified by the provided StandardsArn. To obtain the ARN for a standard, use the DescribeStandards operation. For more information, see the Security Standards section of the Security Hub CSPM User Guide.

Enables the standards specified by the provided StandardsArn. To obtain the ARN for a standard, use the DescribeStandards operation. For more information, see the Security Standards section of the Security Hub CSPM User Guide.

Sourcemodule BatchGetAutomationRulesRequest = Awso_securityhub.Values.BatchGetAutomationRulesRequest

Retrieves a list of details for automation rules based on rule Amazon Resource Names (ARNs).

Sourcemodule BatchGetAutomationRulesResponse = Awso_securityhub.Values.BatchGetAutomationRulesResponse

Retrieves a list of details for automation rules based on rule Amazon Resource Names (ARNs).

The target account, organizational unit, or the root that is associated with an Security Hub CSPM configuration. The configuration can be a configuration policy or self-managed behavior.

Sourcemodule ConfigurationPolicyAssociation = Awso_securityhub.Values.ConfigurationPolicyAssociation

Provides details about the association between an Security Hub CSPM configuration and a target account, organizational unit, or the root. An association can exist between a target and a configuration policy, or between a target and self-managed behavior.

Sourcemodule ConfigurationPolicyAssociationsList = Awso_securityhub.Values.ConfigurationPolicyAssociationsList
Sourcemodule BatchGetConfigurationPolicyAssociationsRequest = Awso_securityhub.Values.BatchGetConfigurationPolicyAssociationsRequest

Returns associations between an Security Hub CSPM configuration and a batch of target accounts, organizational units, or the root. Only the Security Hub CSPM delegated administrator can invoke this operation from the home Region. A configuration can refer to a configuration policy or to a self-managed configuration.

Sourcemodule UnprocessedConfigurationPolicyAssociation = Awso_securityhub.Values.UnprocessedConfigurationPolicyAssociation

An array of configuration policy associations, one for each configuration policy association identifier, that was specified in a BatchGetConfigurationPolicyAssociations request but couldn’t be processed due to an error.

Sourcemodule UnprocessedConfigurationPolicyAssociationList = Awso_securityhub.Values.UnprocessedConfigurationPolicyAssociationList
Sourcemodule ConfigurationPolicyAssociationSummary = Awso_securityhub.Values.ConfigurationPolicyAssociationSummary

An object that contains the details of a configuration policy association that’s returned in a ListConfigurationPolicyAssociations request.

Sourcemodule ConfigurationPolicyAssociationList = Awso_securityhub.Values.ConfigurationPolicyAssociationList
Sourcemodule BatchGetConfigurationPolicyAssociationsResponse = Awso_securityhub.Values.BatchGetConfigurationPolicyAssociationsResponse

Returns associations between an Security Hub CSPM configuration and a batch of target accounts, organizational units, or the root. Only the Security Hub CSPM delegated administrator can invoke this operation from the home Region. A configuration can refer to a configuration policy or to a self-managed configuration.

Sourcemodule BatchGetSecurityControlsRequest = Awso_securityhub.Values.BatchGetSecurityControlsRequest

Provides details about a batch of security controls for the current Amazon Web Services account and Amazon Web Services Region.

Provides details about a security control for which a response couldn't be returned.

An object that includes the data type of a security control parameter and its current value.

An object that provides the current value of a security control parameter and identifies whether it has been customized.

A security control in Security Hub CSPM describes a security best practice related to a specific resource.

Sourcemodule BatchGetSecurityControlsResponse = Awso_securityhub.Values.BatchGetSecurityControlsResponse

Provides details about a batch of security controls for the current Amazon Web Services account and Amazon Web Services Region.

An array with one or more objects that includes a security control (identified with SecurityControlId, SecurityControlArn, or a mix of both parameters) and the Amazon Resource Name (ARN) of a standard. The security control ID or ARN is the same across standards.

Sourcemodule StandardsControlAssociationIds = Awso_securityhub.Values.StandardsControlAssociationIds
Sourcemodule BatchGetStandardsControlAssociationsRequest = Awso_securityhub.Values.BatchGetStandardsControlAssociationsRequest

For a batch of security controls and standards, identifies whether each control is currently enabled or disabled in a standard. Calls to this operation return a RESOURCE_NOT_FOUND_EXCEPTION error when the standard subscription for the association has a NOT_READY_FOR_UPDATES value for StandardsControlsUpdatable.

Sourcemodule UnprocessedStandardsControlAssociation = Awso_securityhub.Values.UnprocessedStandardsControlAssociation

Provides details about which control's enablement status couldn't be retrieved in a specified standard when calling BatchUpdateStandardsControlAssociations. This parameter also provides details about why the request was unprocessed.

Sourcemodule UnprocessedStandardsControlAssociations = Awso_securityhub.Values.UnprocessedStandardsControlAssociations
Sourcemodule StandardsControlAssociationDetail = Awso_securityhub.Values.StandardsControlAssociationDetail

Provides details about a control's enablement status in a specified standard.

Sourcemodule StandardsControlAssociationDetails = Awso_securityhub.Values.StandardsControlAssociationDetails
Sourcemodule BatchGetStandardsControlAssociationsResponse = Awso_securityhub.Values.BatchGetStandardsControlAssociationsResponse

For a batch of security controls and standards, identifies whether each control is currently enabled or disabled in a standard. Calls to this operation return a RESOURCE_NOT_FOUND_EXCEPTION error when the standard subscription for the association has a NOT_READY_FOR_UPDATES value for StandardsControlsUpdatable.

Sourcemodule BatchImportFindingsRequestFindingList = Awso_securityhub.Values.BatchImportFindingsRequestFindingList

Imports security findings generated by a finding provider into Security Hub CSPM. This action is requested by the finding provider to import its findings into Security Hub CSPM. BatchImportFindings must be called by one of the following: The Amazon Web Services account that is associated with a finding if you are using the default product ARN or are a partner sending findings from within a customer's Amazon Web Services account. In these cases, the identifier of the account that you are calling BatchImportFindings from needs to be the same as the AwsAccountId attribute for the finding. An Amazon Web Services account that Security Hub CSPM has allow-listed for an official partner integration. In this case, you can call BatchImportFindings from the allow-listed account and send findings from different customer accounts in the same batch. The maximum allowed size for a finding is 240 Kb. An error is returned for any finding larger than 240 Kb. After a finding is created, BatchImportFindings cannot be used to update the following finding fields and objects, which Security Hub CSPM customers use to manage their investigation workflow. Note UserDefinedFields VerificationState Workflow Finding providers also should not use BatchImportFindings to update the following attributes. Confidence Criticality RelatedFindings Severity Types Instead, finding providers use FindingProviderFields to provide values for these attributes.

The list of the findings that cannot be imported. For each finding, the list provides the error.

Imports security findings generated by a finding provider into Security Hub CSPM. This action is requested by the finding provider to import its findings into Security Hub CSPM. BatchImportFindings must be called by one of the following: The Amazon Web Services account that is associated with a finding if you are using the default product ARN or are a partner sending findings from within a customer's Amazon Web Services account. In these cases, the identifier of the account that you are calling BatchImportFindings from needs to be the same as the AwsAccountId attribute for the finding. An Amazon Web Services account that Security Hub CSPM has allow-listed for an official partner integration. In this case, you can call BatchImportFindings from the allow-listed account and send findings from different customer accounts in the same batch. The maximum allowed size for a finding is 240 Kb. An error is returned for any finding larger than 240 Kb. After a finding is created, BatchImportFindings cannot be used to update the following finding fields and objects, which Security Hub CSPM customers use to manage their investigation workflow. Note UserDefinedFields VerificationState Workflow Finding providers also should not use BatchImportFindings to update the following attributes. Confidence Criticality RelatedFindings Severity Types Instead, finding providers use FindingProviderFields to provide values for these attributes.

Sourcemodule UpdateAutomationRulesRequestItem = Awso_securityhub.Values.UpdateAutomationRulesRequestItem

Specifies the parameters to update in an existing automation rule.

Sourcemodule UpdateAutomationRulesRequestItemsList = Awso_securityhub.Values.UpdateAutomationRulesRequestItemsList
Sourcemodule BatchUpdateAutomationRulesRequest = Awso_securityhub.Values.BatchUpdateAutomationRulesRequest

Updates one or more automation rules based on rule Amazon Resource Names (ARNs) and input parameters.

Sourcemodule BatchUpdateAutomationRulesResponse = Awso_securityhub.Values.BatchUpdateAutomationRulesResponse

Updates one or more automation rules based on rule Amazon Resource Names (ARNs) and input parameters.

Used by Security Hub CSPM customers to update information about their investigation into one or more findings. Requested by administrator accounts or member accounts. Administrator accounts can update findings for their account and their member accounts. A member account can update findings only for their own account. Administrator and member accounts can use this operation to update the following fields and objects for one or more findings: Confidence Criticality Note RelatedFindings Severity Types UserDefinedFields VerificationState Workflow If you use this operation to update a finding, your updates don’t affect the value for the UpdatedAt field of the finding. Also note that it can take several minutes for Security Hub CSPM to process your request and update each finding specified in the request. You can configure IAM policies to restrict access to fields and field values. For example, you might not want member accounts to be able to suppress findings or change the finding severity. For more information see Configuring access to BatchUpdateFindings in the Security Hub CSPM User Guide.

Sourcemodule BatchUpdateFindingsUnprocessedFinding = Awso_securityhub.Values.BatchUpdateFindingsUnprocessedFinding

A finding from a BatchUpdateFindings request that Security Hub CSPM was unable to update.

Sourcemodule BatchUpdateFindingsUnprocessedFindingsList = Awso_securityhub.Values.BatchUpdateFindingsUnprocessedFindingsList

Used by Security Hub CSPM customers to update information about their investigation into one or more findings. Requested by administrator accounts or member accounts. Administrator accounts can update findings for their account and their member accounts. A member account can update findings only for their own account. Administrator and member accounts can use this operation to update the following fields and objects for one or more findings: Confidence Criticality Note RelatedFindings Severity Types UserDefinedFields VerificationState Workflow If you use this operation to update a finding, your updates don’t affect the value for the UpdatedAt field of the finding. Also note that it can take several minutes for Security Hub CSPM to process your request and update each finding specified in the request. You can configure IAM policies to restrict access to fields and field values. For example, you might not want member accounts to be able to suppress findings or change the finding severity. For more information see Configuring access to BatchUpdateFindings in the Security Hub CSPM User Guide.

Provides a standard to identify security findings using OCSF.

Sourcemodule BatchUpdateFindingsV2ProcessedFinding = Awso_securityhub.Values.BatchUpdateFindingsV2ProcessedFinding

The list of findings that were updated.

Sourcemodule BatchUpdateFindingsV2ProcessedFindingsList = Awso_securityhub.Values.BatchUpdateFindingsV2ProcessedFindingsList

Updates information about a customer's investigation into a finding. Delegated administrator accounts can update findings for their account and their member accounts. Member accounts can update findings for their own account. BatchUpdateFindings and BatchUpdateFindingsV2 both use securityhub:BatchUpdateFindings in the Action element of an IAM policy statement. You must have permission to perform the securityhub:BatchUpdateFindings action. You can configure IAM policies to restrict access to specific finding fields or field values by using the securityhub:OCSFSyntaxPath/<fieldName> condition key, where <fieldName> is one of the following supported fields: SeverityId, StatusId, or Comment. To prevent a user from updating a specific field, use a Null condition with securityhub:OCSFSyntaxPath/<fieldName> set to "false". To prevent a user from setting a field to a specific value, use a StringEquals condition with securityhub:OCSFSyntaxPath/<fieldName> set to the disallowed value or list of values. Updates from BatchUpdateFindingsV2 don't affect the value of finding_info.modified_time, finding_info.modified_time_dt, time, or time_dt for a finding.

The request has failed validation because it's missing required fields or has invalid inputs.

The limit on the number of requests per second was exceeded.

The request has failed due to an internal failure of the service.

The request causes conflict with the current state of the service resource.

Sourcemodule BatchUpdateFindingsV2UnprocessedFindingErrorCode = Awso_securityhub.Values.BatchUpdateFindingsV2UnprocessedFindingErrorCode
Sourcemodule BatchUpdateFindingsV2UnprocessedFinding = Awso_securityhub.Values.BatchUpdateFindingsV2UnprocessedFinding

The list of findings that were not updated.

Sourcemodule BatchUpdateFindingsV2UnprocessedFindingsList = Awso_securityhub.Values.BatchUpdateFindingsV2UnprocessedFindingsList

Updates information about a customer's investigation into a finding. Delegated administrator accounts can update findings for their account and their member accounts. Member accounts can update findings for their own account. BatchUpdateFindings and BatchUpdateFindingsV2 both use securityhub:BatchUpdateFindings in the Action element of an IAM policy statement. You must have permission to perform the securityhub:BatchUpdateFindings action. You can configure IAM policies to restrict access to specific finding fields or field values by using the securityhub:OCSFSyntaxPath/<fieldName> condition key, where <fieldName> is one of the following supported fields: SeverityId, StatusId, or Comment. To prevent a user from updating a specific field, use a Null condition with securityhub:OCSFSyntaxPath/<fieldName> set to "false". To prevent a user from setting a field to a specific value, use a StringEquals condition with securityhub:OCSFSyntaxPath/<fieldName> set to the disallowed value or list of values. Updates from BatchUpdateFindingsV2 don't affect the value of finding_info.modified_time, finding_info.modified_time_dt, time, or time_dt for a finding.

Sourcemodule StandardsControlAssociationUpdate = Awso_securityhub.Values.StandardsControlAssociationUpdate

An array of requested updates to the enablement status of controls in specified standards. The objects in the array include a security control ID, the Amazon Resource Name (ARN) of the standard, the requested enablement status, and the reason for updating the enablement status.

Sourcemodule StandardsControlAssociationUpdates = Awso_securityhub.Values.StandardsControlAssociationUpdates
Sourcemodule BatchUpdateStandardsControlAssociationsRequest = Awso_securityhub.Values.BatchUpdateStandardsControlAssociationsRequest

For a batch of security controls and standards, this operation updates the enablement status of a control in a standard.

Sourcemodule UnprocessedStandardsControlAssociationUpdate = Awso_securityhub.Values.UnprocessedStandardsControlAssociationUpdate

Provides details about which control's enablement status could not be updated in a specified standard when calling the BatchUpdateStandardsControlAssociations API. This parameter also provides details about why the request was unprocessed.

Sourcemodule UnprocessedStandardsControlAssociationUpdates = Awso_securityhub.Values.UnprocessedStandardsControlAssociationUpdates
Sourcemodule BatchUpdateStandardsControlAssociationsResponse = Awso_securityhub.Values.BatchUpdateStandardsControlAssociationsResponse

For a batch of security controls and standards, this operation updates the enablement status of a control in a standard.

The options for customizing a security control parameter with a boolean. For a boolean parameter, the options are true and false.

Enables filtering of security findings based on string field values in OCSF.

Enables filtering of security findings based on numerical field values in OCSF.

Enables filtering of security findings based on map field values in OCSF.

The structure for filtering findings based on IP address attributes.

Enables filtering of security findings based on date and timestamp fields in OCSF.

Enables filtering of security findings based on boolean field values in OCSF.

Enables the creation of filtering criteria for security findings.

module CompositeFilterList = Awso_securityhub.Values.CompositeFilterList
Sourcemodule StringListConfigurationOptions = Awso_securityhub.Values.StringListConfigurationOptions

The options for customizing a security control parameter that is a list of strings.

The options for customizing a security control parameter that is a string.

Sourcemodule IntegerListConfigurationOptions = Awso_securityhub.Values.IntegerListConfigurationOptions

The options for customizing a security control parameter that is a list of integers.

The options for customizing a security control parameter that is an integer.

The options for customizing a security control parameter that is a list of enums.

The options for customizing a security control parameter that is an enum.

The options for customizing a security control parameter that is a double.

The options for customizing a security control parameter.

Sourcemodule ConfigurationPolicyAssociationSummaryList = Awso_securityhub.Values.ConfigurationPolicyAssociationSummaryList

An object that contains the details of an Security Hub CSPM configuration policy that’s returned in a ListConfigurationPolicies request.

Sourcemodule ConfigurationPolicySummaryList = Awso_securityhub.Values.ConfigurationPolicySummaryList

The connectorV2 third-party provider configuration summary.

A condensed overview of the connectorV2..

Creates a custom action target in Security Hub CSPM. You can use custom actions on findings and insights in Security Hub CSPM to trigger target actions in Amazon CloudWatch Events.

The resource specified in the request conflicts with an existing resource.

Creates a custom action target in Security Hub CSPM. You can use custom actions on findings and insights in Security Hub CSPM to trigger target actions in Amazon CloudWatch Events.

Enables aggregation across Amazon Web Services Regions.

The request was rejected because it would exceed the service quota limit.

Enables aggregation across Amazon Web Services Regions.

Creates an automation rule based on input parameters.

Creates an automation rule based on input parameters.

Specifies the filtering criteria for security findings using OCSF.

Defines the parameters and conditions used to evaluate and filter security findings.

Creates a V2 automation rule.

Sourcemodule CreateAutomationRuleV2Response = Awso_securityhub.Values.CreateAutomationRuleV2Response

Creates a V2 automation rule.

Sourcemodule SecurityControlCustomParameter = Awso_securityhub.Values.SecurityControlCustomParameter

A list of security controls and control parameter values that are included in a configuration policy.

Sourcemodule SecurityControlCustomParametersList = Awso_securityhub.Values.SecurityControlCustomParametersList
Sourcemodule EnabledSecurityControlIdentifierList = Awso_securityhub.Values.EnabledSecurityControlIdentifierList
Sourcemodule DisabledSecurityControlIdentifierList = Awso_securityhub.Values.DisabledSecurityControlIdentifierList

An object that defines which security controls are enabled in an Security Hub CSPM configuration policy. The enablement status of a control is aligned across all of the enabled standards in an account.

An object that defines how Security Hub CSPM is configured. The configuration policy includes whether Security Hub CSPM is enabled or disabled, a list of enabled security standards, a list of enabled or disabled security controls, and a list of custom parameter values for specified controls. If you provide a list of security controls that are enabled in the configuration policy, Security Hub CSPM disables all other controls (including newly released controls). If you provide a list of security controls that are disabled in the configuration policy, Security Hub CSPM enables all other controls (including newly released controls).

An object that defines how Security Hub CSPM is configured. It includes whether Security Hub CSPM is enabled or disabled, a list of enabled security standards, a list of enabled or disabled security controls, and a list of custom parameter values for specified controls. If you provide a list of security controls that are enabled in the configuration policy, Security Hub CSPM disables all other controls (including newly released controls). If you provide a list of security controls that are disabled in the configuration policy, Security Hub CSPM enables all other controls (including newly released controls).

Sourcemodule CreateConfigurationPolicyRequest = Awso_securityhub.Values.CreateConfigurationPolicyRequest

Creates a configuration policy with the defined configuration. Only the Security Hub CSPM delegated administrator can invoke this operation from the home Region.

Sourcemodule CreateConfigurationPolicyResponse = Awso_securityhub.Values.CreateConfigurationPolicyResponse

Creates a configuration policy with the defined configuration. Only the Security Hub CSPM delegated administrator can invoke this operation from the home Region.

Sourcemodule ServiceNowProviderConfiguration = Awso_securityhub.Values.ServiceNowProviderConfiguration

The initial configuration settings required to establish an integration between Security Hub and ServiceNow ITSM.

Sourcemodule JiraCloudProviderConfiguration = Awso_securityhub.Values.JiraCloudProviderConfiguration

The initial configuration settings required to establish an integration between Security Hub and Jira Cloud.

The initial configuration settings required to establish an integration between Security Hub and third-party provider.

Grants permission to create a connectorV2 based on input parameters.

Grants permission to create a connectorV2 based on input parameters.

Sourcemodule CreateFindingAggregatorRequest = Awso_securityhub.Values.CreateFindingAggregatorRequest

The aggregation Region is now called the home Region. Used to enable cross-Region aggregation. This operation can be invoked from the home Region only. For information about how cross-Region aggregation works, see Understanding cross-Region aggregation in Security Hub CSPM in the Security Hub CSPM User Guide.

Sourcemodule CreateFindingAggregatorResponse = Awso_securityhub.Values.CreateFindingAggregatorResponse

The aggregation Region is now called the home Region. Used to enable cross-Region aggregation. This operation can be invoked from the home Region only. For information about how cross-Region aggregation works, see Understanding cross-Region aggregation in Security Hub CSPM in the Security Hub CSPM User Guide.

Creates a custom insight in Security Hub CSPM. An insight is a consolidation of findings that relate to a security issue that requires attention or remediation. To group the related findings in the insight, use the GroupByAttribute.

Creates a custom insight in Security Hub CSPM. An insight is a consolidation of findings that relate to a security issue that requires attention or remediation. To group the related findings in the insight, use the GroupByAttribute.

Creates a member association in Security Hub CSPM between the specified accounts and the account used to make the request, which is the administrator account. If you are integrated with Organizations, then the administrator account is designated by the organization management account. CreateMembers is always used to add accounts that are not organization members. For accounts that are managed using Organizations, CreateMembers is only used in the following cases: Security Hub CSPM is not configured to automatically add new organization accounts. The account was disassociated or deleted in Security Hub CSPM. This action can only be used by an account that has Security Hub CSPM enabled. To enable Security Hub CSPM, you can use the EnableSecurityHub operation. For accounts that are not organization members, you create the account association and then send an invitation to the member account. To send the invitation, you use the InviteMembers operation. If the account owner accepts the invitation, the account becomes a member account in Security Hub CSPM. Accounts that are managed using Organizations don't receive an invitation. They automatically become a member account in Security Hub CSPM. If the organization account does not have Security Hub CSPM enabled, then Security Hub CSPM and the default standards are automatically enabled. Note that Security Hub CSPM cannot be enabled automatically for the organization management account. The organization management account must enable Security Hub CSPM before the administrator account enables it as a member account. For organization accounts that already have Security Hub CSPM enabled, Security Hub CSPM does not make any other changes to those accounts. It does not change their enabled standards or controls. A permissions policy is added that permits the administrator account to view the findings generated in the member account. To remove the association between the administrator and member accounts, use the DisassociateFromMasterAccount or DisassociateMembers operation.

Sourcemodule Result_ = Awso_securityhub.Values.Result_

Details about the account that was not processed.

Creates a member association in Security Hub CSPM between the specified accounts and the account used to make the request, which is the administrator account. If you are integrated with Organizations, then the administrator account is designated by the organization management account. CreateMembers is always used to add accounts that are not organization members. For accounts that are managed using Organizations, CreateMembers is only used in the following cases: Security Hub CSPM is not configured to automatically add new organization accounts. The account was disassociated or deleted in Security Hub CSPM. This action can only be used by an account that has Security Hub CSPM enabled. To enable Security Hub CSPM, you can use the EnableSecurityHub operation. For accounts that are not organization members, you create the account association and then send an invitation to the member account. To send the invitation, you use the InviteMembers operation. If the account owner accepts the invitation, the account becomes a member account in Security Hub CSPM. Accounts that are managed using Organizations don't receive an invitation. They automatically become a member account in Security Hub CSPM. If the organization account does not have Security Hub CSPM enabled, then Security Hub CSPM and the default standards are automatically enabled. Note that Security Hub CSPM cannot be enabled automatically for the organization management account. The organization management account must enable Security Hub CSPM before the administrator account enables it as a member account. For organization accounts that already have Security Hub CSPM enabled, Security Hub CSPM does not make any other changes to those accounts. It does not change their enabled standards or controls. A permissions policy is added that permits the administrator account to view the findings generated in the member account. To remove the association between the administrator and member accounts, use the DisassociateFromMasterAccount or DisassociateMembers operation.

Grants permission to create a ticket in the chosen ITSM based on finding information for the provided finding metadata UID.

Grants permission to create a ticket in the chosen ITSM based on finding information for the provided finding metadata UID.

We recommend using Organizations instead of Security Hub CSPM invitations to manage your member accounts. For information, see Managing Security Hub CSPM administrator and member accounts with Organizations in the Security Hub CSPM User Guide. Declines invitations to become a Security Hub CSPM member account. A prospective member account uses this operation to decline an invitation to become a member. Only member accounts that aren't part of an Amazon Web Services organization should use this operation. Organization accounts don't receive invitations.

We recommend using Organizations instead of Security Hub CSPM invitations to manage your member accounts. For information, see Managing Security Hub CSPM administrator and member accounts with Organizations in the Security Hub CSPM User Guide. Declines invitations to become a Security Hub CSPM member account. A prospective member account uses this operation to decline an invitation to become a member. Only member accounts that aren't part of an Amazon Web Services organization should use this operation. Organization accounts don't receive invitations.

Deletes a custom action target from Security Hub CSPM. Deleting a custom action target does not affect any findings or insights that were already sent to Amazon CloudWatch Events using the custom action.

Deletes a custom action target from Security Hub CSPM. Deleting a custom action target does not affect any findings or insights that were already sent to Amazon CloudWatch Events using the custom action.

Deletes the Aggregator V2.

Deletes the Aggregator V2.

Deletes a V2 automation rule.

Sourcemodule DeleteAutomationRuleV2Response = Awso_securityhub.Values.DeleteAutomationRuleV2Response

Deletes a V2 automation rule.

Sourcemodule DeleteConfigurationPolicyRequest = Awso_securityhub.Values.DeleteConfigurationPolicyRequest

Deletes a configuration policy. Only the Security Hub CSPM delegated administrator can invoke this operation from the home Region. For the deletion to succeed, you must first disassociate a configuration policy from target accounts, organizational units, or the root by invoking the StartConfigurationPolicyDisassociation operation.

Sourcemodule DeleteConfigurationPolicyResponse = Awso_securityhub.Values.DeleteConfigurationPolicyResponse

Deletes a configuration policy. Only the Security Hub CSPM delegated administrator can invoke this operation from the home Region. For the deletion to succeed, you must first disassociate a configuration policy from target accounts, organizational units, or the root by invoking the StartConfigurationPolicyDisassociation operation.

Grants permission to delete a connectorV2.

Grants permission to delete a connectorV2.

Sourcemodule DeleteFindingAggregatorRequest = Awso_securityhub.Values.DeleteFindingAggregatorRequest

The aggregation Region is now called the home Region. Deletes a finding aggregator. When you delete the finding aggregator, you stop cross-Region aggregation. Finding replication stops occurring from the linked Regions to the home Region. When you stop cross-Region aggregation, findings that were already replicated and sent to the home Region are still visible from the home Region. However, new findings and finding updates are no longer replicated and sent to the home Region.

Sourcemodule DeleteFindingAggregatorResponse = Awso_securityhub.Values.DeleteFindingAggregatorResponse

The aggregation Region is now called the home Region. Deletes a finding aggregator. When you delete the finding aggregator, you stop cross-Region aggregation. Finding replication stops occurring from the linked Regions to the home Region. When you stop cross-Region aggregation, findings that were already replicated and sent to the home Region are still visible from the home Region. However, new findings and finding updates are no longer replicated and sent to the home Region.

Deletes the insight specified by the InsightArn.

Deletes the insight specified by the InsightArn.

We recommend using Organizations instead of Security Hub CSPM invitations to manage your member accounts. For information, see Managing Security Hub CSPM administrator and member accounts with Organizations in the Security Hub CSPM User Guide. Deletes invitations to become a Security Hub CSPM member account. A Security Hub CSPM administrator account can use this operation to delete invitations sent to one or more prospective member accounts. This operation is only used to delete invitations that are sent to prospective member accounts that aren't part of an Amazon Web Services organization. Organization accounts don't receive invitations.

We recommend using Organizations instead of Security Hub CSPM invitations to manage your member accounts. For information, see Managing Security Hub CSPM administrator and member accounts with Organizations in the Security Hub CSPM User Guide. Deletes invitations to become a Security Hub CSPM member account. A Security Hub CSPM administrator account can use this operation to delete invitations sent to one or more prospective member accounts. This operation is only used to delete invitations that are sent to prospective member accounts that aren't part of an Amazon Web Services organization. Organization accounts don't receive invitations.

Deletes the specified member accounts from Security Hub CSPM. You can invoke this API only to delete accounts that became members through invitation. You can't invoke this API to delete accounts that belong to an Organizations organization.

Deletes the specified member accounts from Security Hub CSPM. You can invoke this API only to delete accounts that became members through invitation. You can't invoke this API to delete accounts that belong to an Organizations organization.

Returns a list of the custom action targets in Security Hub CSPM in your account.

Returns a list of the custom action targets in Security Hub CSPM in your account.

Returns details about the Hub resource in your account, including the HubArn and the time when you enabled Security Hub CSPM.

Returns details about the Hub resource in your account, including the HubArn and the time when you enabled Security Hub CSPM.

Sourcemodule DescribeOrganizationConfigurationRequest = Awso_securityhub.Values.DescribeOrganizationConfigurationRequest

Returns information about the way your organization is configured in Security Hub CSPM. Only the Security Hub CSPM administrator account can invoke this operation.

Sourcemodule OrganizationConfigurationStatus = Awso_securityhub.Values.OrganizationConfigurationStatus
Sourcemodule OrganizationConfigurationConfigurationType = Awso_securityhub.Values.OrganizationConfigurationConfigurationType

Provides information about the way an organization is configured in Security Hub CSPM.

Sourcemodule DescribeOrganizationConfigurationResponse = Awso_securityhub.Values.DescribeOrganizationConfigurationResponse

Returns information about the way your organization is configured in Security Hub CSPM. Only the Security Hub CSPM administrator account can invoke this operation.

Returns information about product integrations in Security Hub CSPM. You can optionally provide an integration ARN. If you provide an integration ARN, then the results only include that integration. If you don't provide an integration ARN, then the results include all of the available product integrations.

Contains details about a product.

Returns information about product integrations in Security Hub CSPM. You can optionally provide an integration ARN. If you provide an integration ARN, then the results only include that integration. If you don't provide an integration ARN, then the results include all of the available product integrations.

Gets information about the product integration.

Defines the structure for the productV2.

Gets information about the product integration.

Returns details about the service resource in your account.

Returns details about the service resource in your account.

Sourcemodule DescribeStandardsControlsRequest = Awso_securityhub.Values.DescribeStandardsControlsRequest

Returns a list of security standards controls. For each control, the results include information about whether it is currently enabled, the severity, and a link to remediation information. This operation returns an empty list for standard subscriptions where StandardsControlsUpdatable has value NOT_READY_FOR_UPDATES.

Details for an individual security standard control.

Sourcemodule DescribeStandardsControlsResponse = Awso_securityhub.Values.DescribeStandardsControlsResponse

Returns a list of security standards controls. For each control, the results include information about whether it is currently enabled, the severity, and a link to remediation information. This operation returns an empty list for standard subscriptions where StandardsControlsUpdatable has value NOT_READY_FOR_UPDATES.

Returns a list of the available standards in Security Hub CSPM. For each standard, the results include the standard ARN, the name, and a description.

Provides details about the management of a security standard.

Provides information about a specific security standard.

Returns a list of the available standards in Security Hub CSPM. For each standard, the results include the standard ARN, the name, and a description.

Sourcemodule DisableImportFindingsForProductRequest = Awso_securityhub.Values.DisableImportFindingsForProductRequest

Disables the integration of the specified product with Security Hub CSPM. After the integration is disabled, findings from that product are no longer sent to Security Hub CSPM.

Sourcemodule DisableImportFindingsForProductResponse = Awso_securityhub.Values.DisableImportFindingsForProductResponse

Disables the integration of the specified product with Security Hub CSPM. After the integration is disabled, findings from that product are no longer sent to Security Hub CSPM.

Sourcemodule DisableOrganizationAdminAccountRequest = Awso_securityhub.Values.DisableOrganizationAdminAccountRequest

Disables a Security Hub CSPM administrator account. Can only be called by the organization management account.

Sourcemodule DisableOrganizationAdminAccountResponse = Awso_securityhub.Values.DisableOrganizationAdminAccountResponse

Disables a Security Hub CSPM administrator account. Can only be called by the organization management account.

Disables Security Hub CSPM in your account only in the current Amazon Web Services Region. To disable Security Hub CSPM in all Regions, you must submit one request per Region where you have enabled Security Hub CSPM. You can't disable Security Hub CSPM in an account that is currently the Security Hub CSPM administrator. When you disable Security Hub CSPM, your existing findings and insights and any Security Hub CSPM configuration settings are deleted after 90 days and cannot be recovered. Any standards that were enabled are disabled, and your administrator and member account associations are removed. If you want to save your existing findings, you must export them before you disable Security Hub CSPM.

Disables Security Hub CSPM in your account only in the current Amazon Web Services Region. To disable Security Hub CSPM in all Regions, you must submit one request per Region where you have enabled Security Hub CSPM. You can't disable Security Hub CSPM in an account that is currently the Security Hub CSPM administrator. When you disable Security Hub CSPM, your existing findings and insights and any Security Hub CSPM configuration settings are deleted after 90 days and cannot be recovered. Any standards that were enabled are disabled, and your administrator and member account associations are removed. If you want to save your existing findings, you must export them before you disable Security Hub CSPM.

Disable the service for the current Amazon Web Services Region or specified Amazon Web Services Region.

Disable the service for the current Amazon Web Services Region or specified Amazon Web Services Region.

Sourcemodule DisassociateFromAdministratorAccountRequest = Awso_securityhub.Values.DisassociateFromAdministratorAccountRequest

Disassociates the current Security Hub CSPM member account from the associated administrator account. This operation is only used by accounts that are not part of an organization. For organization accounts, only the administrator account can disassociate a member account.

Sourcemodule DisassociateFromAdministratorAccountResponse = Awso_securityhub.Values.DisassociateFromAdministratorAccountResponse

Disassociates the current Security Hub CSPM member account from the associated administrator account. This operation is only used by accounts that are not part of an organization. For organization accounts, only the administrator account can disassociate a member account.

Sourcemodule DisassociateFromMasterAccountRequest = Awso_securityhub.Values.DisassociateFromMasterAccountRequest

This method is deprecated. Instead, use DisassociateFromAdministratorAccount. The Security Hub CSPM console continues to use DisassociateFromMasterAccount. It will eventually change to use DisassociateFromAdministratorAccount. Any IAM policies that specifically control access to this function must continue to use DisassociateFromMasterAccount. You should also add DisassociateFromAdministratorAccount to your policies to ensure that the correct permissions are in place after the console begins to use DisassociateFromAdministratorAccount. Disassociates the current Security Hub CSPM member account from the associated administrator account. This operation is only used by accounts that are not part of an organization. For organization accounts, only the administrator account can disassociate a member account.

Sourcemodule DisassociateFromMasterAccountResponse = Awso_securityhub.Values.DisassociateFromMasterAccountResponse

This method is deprecated. Instead, use DisassociateFromAdministratorAccount. The Security Hub CSPM console continues to use DisassociateFromMasterAccount. It will eventually change to use DisassociateFromAdministratorAccount. Any IAM policies that specifically control access to this function must continue to use DisassociateFromMasterAccount. You should also add DisassociateFromAdministratorAccount to your policies to ensure that the correct permissions are in place after the console begins to use DisassociateFromAdministratorAccount. Disassociates the current Security Hub CSPM member account from the associated administrator account. This operation is only used by accounts that are not part of an organization. For organization accounts, only the administrator account can disassociate a member account.

Disassociates the specified member accounts from the associated administrator account. Can be used to disassociate both accounts that are managed using Organizations and accounts that were invited manually.

Disassociates the specified member accounts from the associated administrator account. Can be used to disassociate both accounts that are managed using Organizations and accounts that were invited manually.

Sourcemodule EnableImportFindingsForProductRequest = Awso_securityhub.Values.EnableImportFindingsForProductRequest

Enables the integration of a partner product with Security Hub CSPM. Integrated products send findings to Security Hub CSPM. When you enable a product integration, a permissions policy that grants permission for the product to send findings to Security Hub CSPM is applied.

Sourcemodule EnableImportFindingsForProductResponse = Awso_securityhub.Values.EnableImportFindingsForProductResponse

Enables the integration of a partner product with Security Hub CSPM. Integrated products send findings to Security Hub CSPM. When you enable a product integration, a permissions policy that grants permission for the product to send findings to Security Hub CSPM is applied.

Sourcemodule EnableOrganizationAdminAccountRequest = Awso_securityhub.Values.EnableOrganizationAdminAccountRequest

Designates the Security Hub CSPM administrator account for an organization. Can only be called by the organization management account.

Sourcemodule EnableOrganizationAdminAccountResponse = Awso_securityhub.Values.EnableOrganizationAdminAccountResponse

Designates the Security Hub CSPM administrator account for an organization. Can only be called by the organization management account.

Enables Security Hub CSPM for your account in the current Region or the Region you specify in the request. When you enable Security Hub CSPM, you grant to Security Hub CSPM the permissions necessary to gather findings from other services that are integrated with Security Hub CSPM. When you use the EnableSecurityHub operation to enable Security Hub CSPM, you also automatically enable the following standards: Center for Internet Security (CIS) Amazon Web Services Foundations Benchmark v1.2.0 Amazon Web Services Foundational Security Best Practices Other standards are not automatically enabled. To opt out of automatically enabled standards, set EnableDefaultStandards to false. After you enable Security Hub CSPM, to enable a standard, use the BatchEnableStandards operation. To disable a standard, use the BatchDisableStandards operation. To learn more, see the setup information in the Security Hub CSPM User Guide.

Enables Security Hub CSPM for your account in the current Region or the Region you specify in the request. When you enable Security Hub CSPM, you grant to Security Hub CSPM the permissions necessary to gather findings from other services that are integrated with Security Hub CSPM. When you use the EnableSecurityHub operation to enable Security Hub CSPM, you also automatically enable the following standards: Center for Internet Security (CIS) Amazon Web Services Foundations Benchmark v1.2.0 Amazon Web Services Foundational Security Best Practices Other standards are not automatically enabled. To opt out of automatically enabled standards, set EnableDefaultStandards to false. After you enable Security Hub CSPM, to enable a standard, use the BatchEnableStandards operation. To disable a standard, use the BatchDisableStandards operation. To learn more, see the setup information in the Security Hub CSPM User Guide.

Enables the service in account for the current Amazon Web Services Region or specified Amazon Web Services Region.

Enables the service in account for the current Amazon Web Services Region or specified Amazon Web Services Region.

A finding aggregator is a Security Hub CSPM resource that specifies cross-Region aggregation settings, including the home Region and any linked Regions.

An array of objects that provides details about a change to a finding, including the Amazon Web Services Security Finding Format (ASFF) field that changed, the value of the field before the change, and the value of the field after the change.

Sourcemodule FindingHistoryUpdateSourceType = Awso_securityhub.Values.FindingHistoryUpdateSourceType

Identifies the source of the finding change event.

A list of events that changed the specified finding during the specified time period. Each record represents a single finding change event.

Defines the data boundary for a findings query. Scopes determine which organizational units or organizations to retrieve data from.

A filter for string-based fields in findings trend data.

Sourcemodule FindingsTrendsStringFilterList = Awso_securityhub.Values.FindingsTrendsStringFilterList
module FindingsTrendsCompositeFilter = Awso_securityhub.Values.FindingsTrendsCompositeFilter

A filter structure that contains a logical combination of string filters and nested composite filters for findings trend data.

module FindingsTrendsCompositeFilterList = Awso_securityhub.Values.FindingsTrendsCompositeFilterList

The structure that defines filters to apply to findings trend data queries.

Sourcemodule GenerateRecommendedPolicyV2Request = Awso_securityhub.Values.GenerateRecommendedPolicyV2Request

Begins the recommended policy generation to remediate a Security Hub finding. GenerateRecommendedPolicyV2 only supports findings for unused permissions.

Sourcemodule GenerateRecommendedPolicyV2Response = Awso_securityhub.Values.GenerateRecommendedPolicyV2Response

Begins the recommended policy generation to remediate a Security Hub finding. GenerateRecommendedPolicyV2 only supports findings for unused permissions.

Sourcemodule GetAdministratorAccountRequest = Awso_securityhub.Values.GetAdministratorAccountRequest

Provides the details for the Security Hub CSPM administrator account for the current member account. Can be used by both member accounts that are managed using Organizations and accounts that were invited manually.

Details about an invitation.

Sourcemodule GetAdministratorAccountResponse = Awso_securityhub.Values.GetAdministratorAccountResponse

Provides the details for the Security Hub CSPM administrator account for the current member account. Can be used by both member accounts that are managed using Organizations and accounts that were invited manually.

Returns the configuration of the specified Aggregator V2.

Returns the configuration of the specified Aggregator V2.

Returns an automation rule for the V2 service.

Returns an automation rule for the V2 service.

Sourcemodule GetConfigurationPolicyAssociationRequest = Awso_securityhub.Values.GetConfigurationPolicyAssociationRequest

Returns the association between a configuration and a target account, organizational unit, or the root. The configuration can be a configuration policy or self-managed behavior. Only the Security Hub CSPM delegated administrator can invoke this operation from the home Region.

Sourcemodule GetConfigurationPolicyAssociationResponse = Awso_securityhub.Values.GetConfigurationPolicyAssociationResponse

Returns the association between a configuration and a target account, organizational unit, or the root. The configuration can be a configuration policy or self-managed behavior. Only the Security Hub CSPM delegated administrator can invoke this operation from the home Region.

Provides information about a configuration policy. Only the Security Hub CSPM delegated administrator can invoke this operation from the home Region.

Sourcemodule GetConfigurationPolicyResponse = Awso_securityhub.Values.GetConfigurationPolicyResponse

Provides information about a configuration policy. Only the Security Hub CSPM delegated administrator can invoke this operation from the home Region.

Grants permission to retrieve details for a connectorV2 based on connector id.

Information about a ServiceNow ITSM integration.

Information about the configuration and status of a Jira Cloud integration.

The third-party provider detail for a service configuration.

Information about the operational status and health of a connectorV2.

Grants permission to retrieve details for a connectorV2 based on connector id.

Returns a list of the standards that are currently enabled.

Returns a list of the standards that are currently enabled.

The aggregation Region is now called the home Region. Returns the current configuration in the calling account for cross-Region aggregation. A finding aggregator is a resource that establishes the home Region and any linked Regions.

The aggregation Region is now called the home Region. Returns the current configuration in the calling account for cross-Region aggregation. A finding aggregator is a resource that establishes the home Region and any linked Regions.

Returns the history of a Security Hub CSPM finding. The history includes changes made to any fields in the Amazon Web Services Security Finding Format (ASFF) except top-level timestamp fields, such as the CreatedAt and UpdatedAt fields. This operation might return fewer results than the maximum number of results (MaxResults) specified in a request, even when more results are available. If this occurs, the response includes a NextToken value, which you should use to retrieve the next set of results in the response. The presence of a NextToken value in a response doesn't necessarily indicate that the results are incomplete. However, you should continue to specify a NextToken value until you receive a response that doesn't include this value.

Returns the history of a Security Hub CSPM finding. The history includes changes made to any fields in the Amazon Web Services Security Finding Format (ASFF) except top-level timestamp fields, such as the CreatedAt and UpdatedAt fields. This operation might return fewer results than the maximum number of results (MaxResults) specified in a request, even when more results are available. If this occurs, the response includes a NextToken value, which you should use to retrieve the next set of results in the response. The presence of a NextToken value in a response doesn't necessarily indicate that the results are incomplete. However, you should continue to specify a NextToken value until you receive a response that doesn't include this value.

Defines the how the finding attribute should be grouped.

Returns aggregated statistical data about findings. You can use the Scopes parameter to define the data boundary for the query. Currently, Scopes supports AwsOrganizations, which lets you aggregate findings from your entire organization or from specific organizational units. Only the delegated administrator account can use Scopes. GetFindingStatisticsV2 uses securityhub:GetAdhocInsightResults in the Action element of an IAM policy statement. You must have permission to perform the securityhub:GetAdhocInsightResults action.

Sourcemodule OrganizationalUnitNotFoundException = Awso_securityhub.Values.OrganizationalUnitNotFoundException

The request failed because one or more organizational units specified in the request don't exist within the caller's organization.

The request failed because one or more organizations specified in the request don't exist or don't belong to the caller's organization.

Represents individual aggregated results when grouping security findings for each GroupByField.

Represents finding statistics grouped by GroupedByField.

Sourcemodule GetFindingStatisticsV2Response = Awso_securityhub.Values.GetFindingStatisticsV2Response

Returns aggregated statistical data about findings. You can use the Scopes parameter to define the data boundary for the query. Currently, Scopes supports AwsOrganizations, which lets you aggregate findings from your entire organization or from specific organizational units. Only the delegated administrator account can use Scopes. GetFindingStatisticsV2 uses securityhub:GetAdhocInsightResults in the Action element of an IAM policy statement. You must have permission to perform the securityhub:GetAdhocInsightResults action.

A collection of finding attributes used to sort findings.

Returns a list of findings that match the specified criteria. If cross-Region aggregation is enabled, then when you call GetFindings from the home Region, the results include all of the matching findings from both the home Region and linked Regions.

Returns a list of findings that match the specified criteria. If cross-Region aggregation is enabled, then when you call GetFindings from the home Region, the results include all of the matching findings from both the home Region and linked Regions.

Returns findings trend data based on the specified criteria. This operation helps you analyze patterns and changes in findings over time.

Contains counts of findings grouped by severity level for trend analysis.

Contains the aggregated finding values for a specific point in the findings trend timeline.

Contains the findings trend metrics data for a specific time point in the requested time period.

Returns findings trend data based on the specified criteria. This operation helps you analyze patterns and changes in findings over time.

Returns a list of findings that match the specified criteria. You can use the Scopes parameter to define the data boundary for the query. Currently, Scopes supports AwsOrganizations, which lets you retrieve findings from your entire organization or from specific organizational units. Only the delegated administrator account can use Scopes. You can use the Filters parameter to refine results based on finding attributes. You can use Scopes and Filters independently or together. When both are provided, Scopes narrows the data set first, and then Filters refines results within that scoped data set. GetFindings and GetFindingsV2 both use securityhub:GetFindings in the Action element of an IAM policy statement. You must have permission to perform the securityhub:GetFindings action.

Returns a list of findings that match the specified criteria. You can use the Scopes parameter to define the data boundary for the query. Currently, Scopes supports AwsOrganizations, which lets you retrieve findings from your entire organization or from specific organizational units. Only the delegated administrator account can use Scopes. You can use the Filters parameter to refine results based on finding attributes. You can use Scopes and Filters independently or together. When both are provided, Scopes narrows the data set first, and then Filters refines results within that scoped data set. GetFindings and GetFindingsV2 both use securityhub:GetFindings in the Action element of an IAM policy statement. You must have permission to perform the securityhub:GetFindings action.

Lists the results of the Security Hub CSPM insight specified by the insight ARN.

The insight result values returned by the GetInsightResults operation.

The insight results returned by the GetInsightResults operation.

Lists the results of the Security Hub CSPM insight specified by the insight ARN.

Lists and describes insights for the specified insight ARNs.

Contains information about a Security Hub CSPM insight.

Lists and describes insights for the specified insight ARNs.

We recommend using Organizations instead of Security Hub CSPM invitations to manage your member accounts. For information, see Managing Security Hub CSPM administrator and member accounts with Organizations in the Security Hub CSPM User Guide. Returns the count of all Security Hub CSPM membership invitations that were sent to the calling member account, not including the currently accepted invitation.

We recommend using Organizations instead of Security Hub CSPM invitations to manage your member accounts. For information, see Managing Security Hub CSPM administrator and member accounts with Organizations in the Security Hub CSPM User Guide. Returns the count of all Security Hub CSPM membership invitations that were sent to the calling member account, not including the currently accepted invitation.

This method is deprecated. Instead, use GetAdministratorAccount. The Security Hub CSPM console continues to use GetMasterAccount. It will eventually change to use GetAdministratorAccount. Any IAM policies that specifically control access to this function must continue to use GetMasterAccount. You should also add GetAdministratorAccount to your policies to ensure that the correct permissions are in place after the console begins to use GetAdministratorAccount. Provides the details for the Security Hub CSPM administrator account for the current member account. Can be used by both member accounts that are managed using Organizations and accounts that were invited manually.

This method is deprecated. Instead, use GetAdministratorAccount. The Security Hub CSPM console continues to use GetMasterAccount. It will eventually change to use GetAdministratorAccount. Any IAM policies that specifically control access to this function must continue to use GetMasterAccount. You should also add GetAdministratorAccount to your policies to ensure that the correct permissions are in place after the console begins to use GetAdministratorAccount. Provides the details for the Security Hub CSPM administrator account for the current member account. Can be used by both member accounts that are managed using Organizations and accounts that were invited manually.

Returns the details for the Security Hub CSPM member accounts for the specified account IDs. An administrator account can be either the delegated Security Hub CSPM administrator account for an organization or an administrator account that enabled Security Hub CSPM manually. The results include both member accounts that are managed using Organizations and accounts that were invited manually.

The details about a member account.

Returns the details for the Security Hub CSPM member accounts for the specified account IDs. An administrator account can be either the delegated Security Hub CSPM administrator account for an organization or an administrator account that enabled Security Hub CSPM manually. The results include both member accounts that are managed using Organizations and accounts that were invited manually.

Retrieves the recommended policy to remediate a Security Hub finding. GetRecommendedPolicyV2 only supports findings for unused permissions.

Sourcemodule UnusedPermissionsRecommendationStep = Awso_securityhub.Values.UnusedPermissionsRecommendationStep

Contains information about the action to take for a policy in an unused permissions finding.

Contains information about a recommended step to remediate a Security Hub finding.

Contains information about the reason that the retrieval of a recommended policy for a finding failed.

Sourcemodule GetRecommendedPolicyV2Response = Awso_securityhub.Values.GetRecommendedPolicyV2Response

Retrieves the recommended policy to remediate a Security Hub finding. GetRecommendedPolicyV2 only supports findings for unused permissions.

Defines the data boundary for a resources query. Scopes determine which organizational units or organizations to retrieve data from.

Enables filtering of Amazon Web Services resources based on string field values.

Enables filtering of Amazon Web Services resources based on numerical values.

Enables filtering of Amazon Web Services resources based on key-value map attributes.

Enables the filtering of Amazon Web Services resources based on date and timestamp attributes.

module ResourcesCompositeFilter = Awso_securityhub.Values.ResourcesCompositeFilter

Enables the creation of criteria for Amazon Web Services resources in Security Hub CSPM.

module ResourcesCompositeFilterList = Awso_securityhub.Values.ResourcesCompositeFilterList

Enables filtering of Amazon Web Services resources based on data.

Defines the configuration for organizing and categorizing Amazon Web Services resources based on associated security findings.

Sourcemodule GetResourcesStatisticsV2Request = Awso_securityhub.Values.GetResourcesStatisticsV2Request

Retrieves statistical information about Amazon Web Services resources and their associated security findings. You can use the Scopes parameter to define the data boundary for the query. Currently, Scopes supports AwsOrganizations, which lets you aggregate resources from your entire organization or from specific organizational units. Only the delegated administrator account can use Scopes.

Sourcemodule GetResourcesStatisticsV2Response = Awso_securityhub.Values.GetResourcesStatisticsV2Response

Retrieves statistical information about Amazon Web Services resources and their associated security findings. You can use the Scopes parameter to define the data boundary for the query. Currently, Scopes supports AwsOrganizations, which lets you aggregate resources from your entire organization or from specific organizational units. Only the delegated administrator account can use Scopes.

A filter for string-based fields in resources trend data, such as resource type or account ID.

Sourcemodule ResourcesTrendsStringFilterList = Awso_securityhub.Values.ResourcesTrendsStringFilterList
module ResourcesTrendsCompositeFilter = Awso_securityhub.Values.ResourcesTrendsCompositeFilter

A filter structure that contains a logical combination of string filters and nested composite filters for resources trend data.

module ResourcesTrendsCompositeFilterList = Awso_securityhub.Values.ResourcesTrendsCompositeFilterList

The structure that defines filters to apply to resources trend data queries.

Returns resource trend data based on the specified criteria. This operation helps you analyze patterns and changes in resource compliance over time.

Contains counts of resources for trend analysis.

Contains the aggregated resource count values for a specific point in the resources trend timeline.

Contains the resource trend metrics data for a specific time point in the requested time period.

Returns resource trend data based on the specified criteria. This operation helps you analyze patterns and changes in resource compliance over time.

Returns a list of resources. You can use the Scopes parameter to define the data boundary for the query. Currently, Scopes supports AwsOrganizations, which lets you retrieve resources from your entire organization or from specific organizational units. Only the delegated administrator account can use Scopes. You can use the Filters parameter to refine results based on resource attributes. You can use Scopes and Filters independently or together. When both are provided, Scopes narrows the data set first, and then Filters refines results within that scoped data set.

Represents tag information associated with Amazon Web Services resources.

A comprehensive distribution of security findings by severity level for Amazon Web Services resources.

A list of summaries for all finding types on a resource.

Provides comprehensive details about an Amazon Web Services resource and its associated security findings.

Returns a list of resources. You can use the Scopes parameter to define the data boundary for the query. Currently, Scopes supports AwsOrganizations, which lets you retrieve resources from your entire organization or from specific organizational units. Only the delegated administrator account can use Scopes. You can use the Filters parameter to refine results based on resource attributes. You can use Scopes and Filters independently or together. When both are provided, Scopes narrows the data set first, and then Filters refines results within that scoped data set.

Sourcemodule GetSecurityControlDefinitionRequest = Awso_securityhub.Values.GetSecurityControlDefinitionRequest

Retrieves the definition of a security control. The definition includes the control title, description, Region availability, parameter definitions, and other details.

An object that describes a security control parameter and the options for customizing it.

Provides metadata for a security control, including its unique standard-agnostic identifier, title, description, severity, availability in Amazon Web Services Regions, and a link to remediation steps.

Sourcemodule GetSecurityControlDefinitionResponse = Awso_securityhub.Values.GetSecurityControlDefinitionResponse

Retrieves the definition of a security control. The definition includes the control title, description, Region availability, parameter definitions, and other details.

We recommend using Organizations instead of Security Hub CSPM invitations to manage your member accounts. For information, see Managing Security Hub CSPM administrator and member accounts with Organizations in the Security Hub CSPM User Guide. Invites other Amazon Web Services accounts to become member accounts for the Security Hub CSPM administrator account that the invitation is sent from. This operation is only used to invite accounts that don't belong to an Amazon Web Services organization. Organization accounts don't receive invitations. Before you can use this action to invite a member, you must first use the CreateMembers action to create the member account in Security Hub CSPM. When the account owner enables Security Hub CSPM and accepts the invitation to become a member account, the administrator account can view the findings generated in the member account.

We recommend using Organizations instead of Security Hub CSPM invitations to manage your member accounts. For information, see Managing Security Hub CSPM administrator and member accounts with Organizations in the Security Hub CSPM User Guide. Invites other Amazon Web Services accounts to become member accounts for the Security Hub CSPM administrator account that the invitation is sent from. This operation is only used to invite accounts that don't belong to an Amazon Web Services organization. Organization accounts don't receive invitations. Before you can use this action to invite a member, you must first use the CreateMembers action to create the member account in Security Hub CSPM. When the account owner enables Security Hub CSPM and accepts the invitation to become a member account, the administrator account can view the findings generated in the member account.

The parameters used to modify an existing Jira Cloud integration.

Retrieves a list of V2 aggregators.

Retrieves a list of V2 aggregators.

A list of automation rules and their metadata for the calling account.

A list of automation rules and their metadata for the calling account.

Returns a list of automation rules and metadata for the calling account.

Returns a list of automation rules and metadata for the calling account.

Sourcemodule ListConfigurationPoliciesRequest = Awso_securityhub.Values.ListConfigurationPoliciesRequest

Lists the configuration policies that the Security Hub CSPM delegated administrator has created for your organization. Only the delegated administrator can invoke this operation from the home Region.

Sourcemodule ListConfigurationPoliciesResponse = Awso_securityhub.Values.ListConfigurationPoliciesResponse

Lists the configuration policies that the Security Hub CSPM delegated administrator has created for your organization. Only the delegated administrator can invoke this operation from the home Region.

Sourcemodule ListConfigurationPolicyAssociationsRequest = Awso_securityhub.Values.ListConfigurationPolicyAssociationsRequest

Provides information about the associations for your configuration policies and self-managed behavior. Only the Security Hub CSPM delegated administrator can invoke this operation from the home Region.

Sourcemodule ListConfigurationPolicyAssociationsResponse = Awso_securityhub.Values.ListConfigurationPolicyAssociationsResponse

Provides information about the associations for your configuration policies and self-managed behavior. Only the Security Hub CSPM delegated administrator can invoke this operation from the home Region.

Grants permission to retrieve a list of connectorsV2 and their metadata for the calling account.

Grants permission to retrieve a list of connectorsV2 and their metadata for the calling account.

Sourcemodule ListEnabledProductsForImportRequest = Awso_securityhub.Values.ListEnabledProductsForImportRequest

Lists all findings-generating solutions (products) that you are subscribed to receive findings from in Security Hub CSPM.

Sourcemodule ListEnabledProductsForImportResponse = Awso_securityhub.Values.ListEnabledProductsForImportResponse

Lists all findings-generating solutions (products) that you are subscribed to receive findings from in Security Hub CSPM.

If cross-Region aggregation is enabled, then ListFindingAggregators returns the Amazon Resource Name (ARN) of the finding aggregator. You can run this operation from any Amazon Web Services Region.

Sourcemodule ListFindingAggregatorsResponse = Awso_securityhub.Values.ListFindingAggregatorsResponse

If cross-Region aggregation is enabled, then ListFindingAggregators returns the Amazon Resource Name (ARN) of the finding aggregator. You can run this operation from any Amazon Web Services Region.

We recommend using Organizations instead of Security Hub CSPM invitations to manage your member accounts. For information, see Managing Security Hub CSPM administrator and member accounts with Organizations in the Security Hub CSPM User Guide. Lists all Security Hub CSPM membership invitations that were sent to the calling account. Only accounts that are managed by invitation can use this operation. Accounts that are managed using the integration with Organizations don't receive invitations.

We recommend using Organizations instead of Security Hub CSPM invitations to manage your member accounts. For information, see Managing Security Hub CSPM administrator and member accounts with Organizations in the Security Hub CSPM User Guide. Lists all Security Hub CSPM membership invitations that were sent to the calling account. Only accounts that are managed by invitation can use this operation. Accounts that are managed using the integration with Organizations don't receive invitations.

Lists details about all member accounts for the current Security Hub CSPM administrator account. The results include both member accounts that belong to an organization and member accounts that were invited manually.

Lists details about all member accounts for the current Security Hub CSPM administrator account. The results include both member accounts that belong to an organization and member accounts that were invited manually.

Sourcemodule ListOrganizationAdminAccountsRequest = Awso_securityhub.Values.ListOrganizationAdminAccountsRequest

Lists the Security Hub CSPM administrator accounts. Can only be called by the organization management account.

Sourcemodule ListOrganizationAdminAccountsResponse = Awso_securityhub.Values.ListOrganizationAdminAccountsResponse

Lists the Security Hub CSPM administrator accounts. Can only be called by the organization management account.

Sourcemodule ListSecurityControlDefinitionsRequest = Awso_securityhub.Values.ListSecurityControlDefinitionsRequest

Lists all of the security controls that apply to a specified standard.

Sourcemodule ListSecurityControlDefinitionsResponse = Awso_securityhub.Values.ListSecurityControlDefinitionsResponse

Lists all of the security controls that apply to a specified standard.

Sourcemodule ListStandardsControlAssociationsRequest = Awso_securityhub.Values.ListStandardsControlAssociationsRequest

Specifies whether a control is currently enabled or disabled in each enabled standard in the calling account. This operation omits standards control associations for standard subscriptions where StandardsControlsUpdatable has value NOT_READY_FOR_UPDATES.

Sourcemodule StandardsControlAssociationSummary = Awso_securityhub.Values.StandardsControlAssociationSummary

An array that provides the enablement status and other details for each control that applies to each enabled standard.

Sourcemodule StandardsControlAssociationSummaries = Awso_securityhub.Values.StandardsControlAssociationSummaries
Sourcemodule ListStandardsControlAssociationsResponse = Awso_securityhub.Values.ListStandardsControlAssociationsResponse

Specifies whether a control is currently enabled or disabled in each enabled standard in the calling account. This operation omits standards control associations for standard subscriptions where StandardsControlsUpdatable has value NOT_READY_FOR_UPDATES.

Returns a list of tags associated with a resource.

Returns a list of tags associated with a resource.

The parameters used to modify an existing ServiceNow integration.

The parameters required to update the configuration of an integration provider.

Grants permission to complete the authorization based on input parameters.

Grants permission to complete the authorization based on input parameters.

The request was rejected because it conflicts with the resource's availability. For example, you tried to update a security control that's currently in the UPDATING state.

Sourcemodule StartConfigurationPolicyAssociationRequest = Awso_securityhub.Values.StartConfigurationPolicyAssociationRequest

Associates a target account, organizational unit, or the root with a specified configuration. The target can be associated with a configuration policy or self-managed behavior. Only the Security Hub CSPM delegated administrator can invoke this operation from the home Region.

Sourcemodule StartConfigurationPolicyAssociationResponse = Awso_securityhub.Values.StartConfigurationPolicyAssociationResponse

Associates a target account, organizational unit, or the root with a specified configuration. The target can be associated with a configuration policy or self-managed behavior. Only the Security Hub CSPM delegated administrator can invoke this operation from the home Region.

Sourcemodule StartConfigurationPolicyDisassociationRequest = Awso_securityhub.Values.StartConfigurationPolicyDisassociationRequest

Disassociates a target account, organizational unit, or the root from a specified configuration. When you disassociate a configuration from its target, the target inherits the configuration of the closest parent. If there’s no configuration to inherit, the target retains its settings but becomes a self-managed account. A target can be disassociated from a configuration policy or self-managed behavior. Only the Security Hub CSPM delegated administrator can invoke this operation from the home Region.

Sourcemodule StartConfigurationPolicyDisassociationResponse = Awso_securityhub.Values.StartConfigurationPolicyDisassociationResponse

Disassociates a target account, organizational unit, or the root from a specified configuration. When you disassociate a configuration from its target, the target inherits the configuration of the closest parent. If there’s no configuration to inherit, the target retains its settings but becomes a self-managed account. A target can be disassociated from a configuration policy or self-managed behavior. Only the Security Hub CSPM delegated administrator can invoke this operation from the home Region.

Adds one or more tags to a resource.

Adds one or more tags to a resource.

Removes one or more tags from a resource.

Removes one or more tags from a resource.

Updates the name and description of a custom action target in Security Hub CSPM.

Updates the name and description of a custom action target in Security Hub CSPM.

Udpates the configuration for the Aggregator V2.

Udpates the configuration for the Aggregator V2.

Updates a V2 automation rule.

Sourcemodule UpdateAutomationRuleV2Response = Awso_securityhub.Values.UpdateAutomationRuleV2Response

Updates a V2 automation rule.

Sourcemodule UpdateConfigurationPolicyRequest = Awso_securityhub.Values.UpdateConfigurationPolicyRequest

Updates a configuration policy. Only the Security Hub CSPM delegated administrator can invoke this operation from the home Region.

Sourcemodule UpdateConfigurationPolicyResponse = Awso_securityhub.Values.UpdateConfigurationPolicyResponse

Updates a configuration policy. Only the Security Hub CSPM delegated administrator can invoke this operation from the home Region.

Grants permission to update a connectorV2 based on its id and input parameters.

Grants permission to update a connectorV2 based on its id and input parameters.

Sourcemodule UpdateFindingAggregatorRequest = Awso_securityhub.Values.UpdateFindingAggregatorRequest

The aggregation Region is now called the home Region. Updates cross-Region aggregation settings. You can use this operation to update the Region linking mode and the list of included or excluded Amazon Web Services Regions. However, you can't use this operation to change the home Region. You can invoke this operation from the current home Region only.

Sourcemodule UpdateFindingAggregatorResponse = Awso_securityhub.Values.UpdateFindingAggregatorResponse

The aggregation Region is now called the home Region. Updates cross-Region aggregation settings. You can use this operation to update the Region linking mode and the list of included or excluded Amazon Web Services Regions. However, you can't use this operation to change the home Region. You can invoke this operation from the current home Region only.

UpdateFindings is a deprecated operation. Instead of UpdateFindings, use the BatchUpdateFindings operation. The UpdateFindings operation updates the Note and RecordState of the Security Hub CSPM aggregated findings that the filter attributes specify. Any member account that can view the finding can also see the update to the finding. Finding updates made with UpdateFindings aren't persisted if the same finding is later updated by the finding provider through the BatchImportFindings operation. In addition, Security Hub CSPM doesn't record updates made with UpdateFindings in the finding history.

UpdateFindings is a deprecated operation. Instead of UpdateFindings, use the BatchUpdateFindings operation. The UpdateFindings operation updates the Note and RecordState of the Security Hub CSPM aggregated findings that the filter attributes specify. Any member account that can view the finding can also see the update to the finding. Finding updates made with UpdateFindings aren't persisted if the same finding is later updated by the finding provider through the BatchImportFindings operation. In addition, Security Hub CSPM doesn't record updates made with UpdateFindings in the finding history.

Updates the Security Hub CSPM insight identified by the specified insight ARN.

Updates the Security Hub CSPM insight identified by the specified insight ARN.

Sourcemodule UpdateOrganizationConfigurationRequest = Awso_securityhub.Values.UpdateOrganizationConfigurationRequest

Updates the configuration of your organization in Security Hub CSPM. Only the Security Hub CSPM administrator account can invoke this operation.

Sourcemodule UpdateOrganizationConfigurationResponse = Awso_securityhub.Values.UpdateOrganizationConfigurationResponse

Updates the configuration of your organization in Security Hub CSPM. Only the Security Hub CSPM administrator account can invoke this operation.

Updates the properties of a security control.

Updates the properties of a security control.

Sourcemodule UpdateSecurityHubConfigurationRequest = Awso_securityhub.Values.UpdateSecurityHubConfigurationRequest

Updates configuration options for Security Hub CSPM.

Sourcemodule UpdateSecurityHubConfigurationResponse = Awso_securityhub.Values.UpdateSecurityHubConfigurationResponse

Updates configuration options for Security Hub CSPM.

Used to control whether an individual security standard control is enabled or disabled. Calls to this operation return a RESOURCE_NOT_FOUND_EXCEPTION error when the standard subscription for the control has StandardsControlsUpdatable value NOT_READY_FOR_UPDATES.

Sourcemodule UpdateStandardsControlResponse = Awso_securityhub.Values.UpdateStandardsControlResponse

Used to control whether an individual security standard control is enabled or disabled. Calls to this operation return a RESOURCE_NOT_FOUND_EXCEPTION error when the standard subscription for the control has StandardsControlsUpdatable value NOT_READY_FOR_UPDATES.