Module Values.InvestigationDetailSource

Details about the investigation related to a potential security event identified by Detective.

Sourcetype nonrec t = {
  1. investigationId : InvestigationId.t option;
    (*

    The investigation ID of the investigation report.

    *)
  2. severity : Severity.t option;
    (*

    Severity based on the likelihood and impact of the indicators of compromise discovered in the investigation.

    *)
  3. status : Status.t option;
    (*

    Status based on the completion status of the investigation.

    *)
  4. state : State.t option;
    (*

    The current state of the investigation. An archived investigation indicates you have completed reviewing the investigation.

    *)
  5. createdTime : Timestamp.t option;
    (*

    The time stamp of the creation time of the investigation report. The value is an UTC ISO8601 formatted string. For example, 2021-08-18T16:35:56.284Z.

    *)
  6. entityArn : EntityArn.t option;
    (*

    The unique Amazon Resource Name (ARN) of the IAM user and IAM role.

    *)
  7. entityType : EntityType.t option;
    (*

    Type of entity. For example, Amazon Web Services accounts, such as IAM user and role.

    *)
}
Sourceval make : ?investigationId:??? -> ?severity:??? -> ?status:??? -> ?state:??? -> ?createdTime:??? -> ?entityArn:??? -> ?entityType:??? -> unit -> t
Sourceval to_value : t -> [> `Structure of (string * [> `Enum of string | `String of InvestigationId.t | `Timestamp of Timestamp.t ]) list ]
Sourceval to_query : t -> Awso.Client.Query.t
Sourceval of_xml : Awso.Xml.t -> t
Sourceval of_string : string -> t
Sourceval of_json : Yojson.Safe.t -> t
Sourceval to_json : t -> Yojson.Safe.t