Module Values.FindingSource

Contains information about the finding that is generated when abnormal or suspicious activity is detected.

Sourcetype nonrec t = {
  1. accountId : String_.t option;
    (*

    The ID of the account in which the finding was generated.

    *)
  2. arn : String_.t option;
    (*

    The ARN of the finding.

    *)
  3. confidence : Double.t option;
    (*

    The confidence score for the finding.

    *)
  4. createdAt : String_.t option;
    (*

    The time and date when the finding was created.

    *)
  5. description : String_.t option;
    (*

    The description of the finding.

    *)
  6. id : String_.t option;
    (*

    The ID of the finding.

    *)
  7. partition : String_.t option;
    (*

    The partition associated with the finding.

    *)
  8. region : String_.t option;
    (*

    The Region where the finding was generated. For findings generated from Global Service Events, the Region value in the finding might differ from the Region where GuardDuty identifies the potential threat. For more information, see How GuardDuty handles Amazon Web Services CloudTrail global events in the Amazon GuardDuty User Guide.

    *)
  9. resource : Resource.t option;
  10. schemaVersion : String_.t option;
    (*

    The version of the schema used for the finding.

    *)
  11. service : Service.t option;
  12. severity : Double.t option;
    (*

    The severity of the finding.

    *)
  13. title : String_.t option;
    (*

    The title of the finding.

    *)
  14. type_ : FindingType.t option;
    (*

    The type of finding.

    *)
  15. updatedAt : String_.t option;
    (*

    The time and date when the finding was last updated.

    *)
  16. associatedAttackSequenceArn : String_.t option;
    (*

    Amazon Resource Name (ARN) associated with the attack sequence finding.

    *)
}
Sourceval make : ?accountId:??? -> ?arn:??? -> ?confidence:??? -> ?createdAt:??? -> ?description:??? -> ?id:??? -> ?partition:??? -> ?region:??? -> ?resource:??? -> ?schemaVersion:??? -> ?service:??? -> ?severity:??? -> ?title:??? -> ?type_:??? -> ?updatedAt:??? -> ?associatedAttackSequenceArn:??? -> unit -> t
Sourceval to_value : t -> [> `Structure of (string * [> `Double of Double.t | `String of String_.t | `Structure of (string * [> `Boolean of Boolean.t | `Integer of Integer.t | `List of [> `Structure of (string * [> `List of [> `Structure of (string * [> `String of String_.t ]) list ] list | `String of String_.t | `Structure of (string * [> `String of String_.t | `Structure of (string * [> `Structure of (string * [> `Structure of (string * [> `Boolean of Boolean.t ]) list ]) list ]) list ]) list | `Timestamp of Timestamp.t ]) list ] list | `String of String_.t | `Structure of (string * [> `Enum of string | `Integer of Integer.t | `List of [> `String of String_.t | `Structure of (string * [> `Integer of Integer.t | `List of [> `String of String_.t | `Structure of (string * [> `String of String_.t | `Structure of (string * [> `String of NonEmptyString.t ]) list ]) list ] list | `Long of Long.t | `String of String_.t ]) list ] list | `String of String_.t | `Structure of (string * [> `Boolean of Boolean.t | `Enum of string | `Integer of Integer.t | `List of [> `String of String_.t | `Structure of (string * [> `Double of Double.t | `Enum of string | `Integer of Integer.t | `List of [> `String of String_.t | `Structure of (string * [> `Enum of string | `List of [> `String of IndicatorValueString.t ] list | `String of String_.t ]) list ] list | `String of String_.t | `Structure of (string * [> `Boolean of Boolean.t | `Double of Double.t | `Enum of string | `Integer of Integer.t | `String of String_.t | `Structure of (string * [> `Double of Double.t | `Enum of string | `List of [> `String of String_.t | `Structure of (string * [> `String of String_.t ]) list ] list | `String of String_.t | `Structure of (string * [> `Enum of string | `String of String_.t ]) list | `Timestamp of Timestamp.t ]) list | `Timestamp of Timestamp.t ]) list | `Timestamp of Timestamp.t ]) list ] list | `Map of ([> `String of String_.t ] * [> `Map of ([> `String of String_.t ] * [> `List of [> `Structure of (string * [> `Enum of string | `Structure of (string * [> `List of [> `String of String_.t ] list ]) list ]) list ] list ]) list | `String of String_.t ]) list | `String of String_.t | `Structure of (string * [> `Boolean of Boolean.t | `Integer of Integer.t | `List of [> `String of String_.t | `Structure of (string * [> `Integer of Integer.t | `List of [> `Structure of (string * [> `String of String_.t ]) list ] list | `String of String_.t | `Timestamp of Timestamp.t ]) list ] list | `Map of ([> `String of String_.t ] * [> `Map of ([> `String of String_.t ] * [> `Structure of (string * [> `Enum of string | `Structure of (string * [> `List of [> `String of String_.t ] list ]) list ]) list ]) list ]) list | `String of String_.t | `Structure of (string * [> `Double of Double.t | `String of String_.t ]) list | `Timestamp of Timestamp.t ]) list | `Timestamp of Timestamp.t ]) list | `Timestamp of Timestamp.t ]) list ]) list ]) list ]
Sourceval to_query : t -> Awso.Client.Query.t
Sourceval of_xml : Awso.Xml.t -> t
Sourceval of_string : string -> t
Sourceval of_json : Yojson.Safe.t -> t
Sourceval to_json : t -> Yojson.Safe.t