Values.ComplianceSourceThis object typically provides details about a control finding, such as applicable standards and the status of control checks. While finding providers can add custom content in Compliance object fields, they are typically used to review details of Security Hub CSPM control findings.
type nonrec t = {status : ComplianceStatus.t option;Typically summarizes the result of a control check. For Security Hub CSPM controls, valid values for Status are as follows. PASSED - Standards check passed for all evaluated resources. WARNING - Some information is missing or this check is not supported for your configuration. FAILED - Standards check failed for at least one evaluated resource. NOT_AVAILABLE - Check could not be performed due to a service outage, API error, or because the result of the Config evaluation was NOT_APPLICABLE. If the Config evaluation result was NOT_APPLICABLE for a Security Hub CSPM control, Security Hub CSPM automatically archives the finding after 3 days.
*)statusReasons : StatusReasonsList.t option;Typically used to provide a list of reasons for the value of Status.
*)securityControlId : NonEmptyString.t option;Typically provides the unique identifier of a control across standards. For Security Hub CSPM controls, this field consists of an Amazon Web Services service and a unique number, such as APIGateway.5.
*)associatedStandards : AssociatedStandardsList.t option;Typically provides an array of enabled security standards in which a security control is currently enabled.
*)securityControlParameters : SecurityControlParametersList.t option;Typically an object that includes security control parameter names and values.
*)}val to_value :
t ->
[> `Structure of
(string
* [> `Enum of string
| `List of
[> `String of NonEmptyString.t
| `Structure of
(string
* [> `List of [> `String of NonEmptyString.t ] list
| `String of NonEmptyString.t ])
list ]
list
| `String of NonEmptyString.t ])
list ]