2020/09/30 - AWS SecurityHub - 2 updated api methods
Changes Update securityhub client to latest version
{'Findings': {'Resources': {'Details': {'AwsApiGatewayRestApi': {'ApiKeySource': 'string',
'BinaryMediaTypes': ['string'],
'CreatedDate': 'string',
'Description': 'string',
'EndpointConfiguration': {'Types': ['string']},
'Id': 'string',
'MinimumCompressionSize': 'integer',
'Name': 'string',
'Version': 'string'},
'AwsApiGatewayStage': {'AccessLogSettings': {'DestinationArn': 'string',
'Format': 'string'},
'CacheClusterEnabled': 'boolean',
'CacheClusterSize': 'string',
'CacheClusterStatus': 'string',
'CanarySettings': {'DeploymentId': 'string',
'PercentTraffic': 'double',
'StageVariableOverrides': {'string': 'string'},
'UseStageCache': 'boolean'},
'ClientCertificateId': 'string',
'CreatedDate': 'string',
'DeploymentId': 'string',
'Description': 'string',
'DocumentationVersion': 'string',
'LastUpdatedDate': 'string',
'MethodSettings': [{'CacheDataEncrypted': 'boolean',
'CacheTtlInSeconds': 'integer',
'CachingEnabled': 'boolean',
'DataTraceEnabled': 'boolean',
'HttpMethod': 'string',
'LoggingLevel': 'string',
'MetricsEnabled': 'boolean',
'RequireAuthorizationForCacheControl': 'boolean',
'ResourcePath': 'string',
'ThrottlingBurstLimit': 'integer',
'ThrottlingRateLimit': 'double',
'UnauthorizedCacheControlHeaderStrategy': 'string'}],
'StageName': 'string',
'TracingEnabled': 'boolean',
'Variables': {'string': 'string'},
'WebAclArn': 'string'},
'AwsApiGatewayV2Api': {'ApiEndpoint': 'string',
'ApiId': 'string',
'ApiKeySelectionExpression': 'string',
'CorsConfiguration': {'AllowCredentials': 'boolean',
'AllowHeaders': ['string'],
'AllowMethods': ['string'],
'AllowOrigins': ['string'],
'ExposeHeaders': ['string'],
'MaxAge': 'integer'},
'CreatedDate': 'string',
'Description': 'string',
'Name': 'string',
'ProtocolType': 'string',
'RouteSelectionExpression': 'string',
'Version': 'string'},
'AwsApiGatewayV2Stage': {'AccessLogSettings': {'DestinationArn': 'string',
'Format': 'string'},
'ApiGatewayManaged': 'boolean',
'AutoDeploy': 'boolean',
'CreatedDate': 'string',
'DefaultRouteSettings': {'DataTraceEnabled': 'boolean',
'DetailedMetricsEnabled': 'boolean',
'LoggingLevel': 'string',
'ThrottlingBurstLimit': 'integer',
'ThrottlingRateLimit': 'double'},
'DeploymentId': 'string',
'Description': 'string',
'LastDeploymentStatusMessage': 'string',
'LastUpdatedDate': 'string',
'RouteSettings': {'DataTraceEnabled': 'boolean',
'DetailedMetricsEnabled': 'boolean',
'LoggingLevel': 'string',
'ThrottlingBurstLimit': 'integer',
'ThrottlingRateLimit': 'double'},
'StageName': 'string',
'StageVariables': {'string': 'string'}},
'AwsCertificateManagerCertificate': {'CertificateAuthorityArn': 'string',
'CreatedAt': 'string',
'DomainName': 'string',
'DomainValidationOptions': [{'DomainName': 'string',
'ResourceRecord': {'Name': 'string',
'Type': 'string',
'Value': 'string'},
'ValidationDomain': 'string',
'ValidationEmails': ['string'],
'ValidationMethod': 'string',
'ValidationStatus': 'string'}],
'ExtendedKeyUsages': [{'Name': 'string',
'OId': 'string'}],
'FailureReason': 'string',
'ImportedAt': 'string',
'InUseBy': ['string'],
'IssuedAt': 'string',
'Issuer': 'string',
'KeyAlgorithm': 'string',
'KeyUsages': [{'Name': 'string'}],
'NotAfter': 'string',
'NotBefore': 'string',
'Options': {'CertificateTransparencyLoggingPreference': 'string'},
'RenewalEligibility': 'string',
'RenewalSummary': {'DomainValidationOptions': [{'DomainName': 'string',
'ResourceRecord': {'Name': 'string',
'Type': 'string',
'Value': 'string'},
'ValidationDomain': 'string',
'ValidationEmails': ['string'],
'ValidationMethod': 'string',
'ValidationStatus': 'string'}],
'RenewalStatus': 'string',
'RenewalStatusReason': 'string',
'UpdatedAt': 'string'},
'Serial': 'string',
'SignatureAlgorithm': 'string',
'Status': 'string',
'Subject': 'string',
'SubjectAlternativeNames': ['string'],
'Type': 'string'},
'AwsCloudFrontDistribution': {'CacheBehaviors': {'Items': [{'ViewerProtocolPolicy': 'string'}]},
'DefaultCacheBehavior': {'ViewerProtocolPolicy': 'string'},
'DefaultRootObject': 'string',
'OriginGroups': {'Items': [{'FailoverCriteria': {'StatusCodes': {'Items': ['integer'],
'Quantity': 'integer'}}}]},
'Origins': {'Items': {'S3OriginConfig': {'OriginAccessIdentity': 'string'}}}},
'AwsCloudTrailTrail': {'CloudWatchLogsLogGroupArn': 'string',
'CloudWatchLogsRoleArn': 'string',
'HasCustomEventSelectors': 'boolean',
'HomeRegion': 'string',
'IncludeGlobalServiceEvents': 'boolean',
'IsMultiRegionTrail': 'boolean',
'IsOrganizationTrail': 'boolean',
'KmsKeyId': 'string',
'LogFileValidationEnabled': 'boolean',
'Name': 'string',
'S3BucketName': 'string',
'S3KeyPrefix': 'string',
'SnsTopicArn': 'string',
'SnsTopicName': 'string',
'TrailArn': 'string'},
'AwsElbLoadBalancer': {'AvailabilityZones': ['string'],
'BackendServerDescriptions': [{'InstancePort': 'integer',
'PolicyNames': ['string']}],
'CanonicalHostedZoneName': 'string',
'CanonicalHostedZoneNameID': 'string',
'CreatedTime': 'string',
'DnsName': 'string',
'HealthCheck': {'HealthyThreshold': 'integer',
'Interval': 'integer',
'Target': 'string',
'Timeout': 'integer',
'UnhealthyThreshold': 'integer'},
'Instances': [{'InstanceId': 'string'}],
'ListenerDescriptions': [{'Listener': {'InstancePort': 'integer',
'InstanceProtocol': 'string',
'LoadBalancerPort': 'integer',
'Protocol': 'string',
'SslCertificateId': 'string'},
'PolicyNames': ['string']}],
'LoadBalancerAttributes': {'AccessLog': {'EmitInterval': 'integer',
'Enabled': 'boolean',
'S3BucketName': 'string',
'S3BucketPrefix': 'string'},
'ConnectionDraining': {'Enabled': 'boolean',
'Timeout': 'integer'},
'ConnectionSettings': {'IdleTimeout': 'integer'},
'CrossZoneLoadBalancing': {'Enabled': 'boolean'}},
'LoadBalancerName': 'string',
'Policies': {'AppCookieStickinessPolicies': [{'CookieName': 'string',
'PolicyName': 'string'}],
'LbCookieStickinessPolicies': [{'CookieExpirationPeriod': 'long',
'PolicyName': 'string'}],
'OtherPolicies': ['string']},
'Scheme': 'string',
'SecurityGroups': ['string'],
'SourceSecurityGroup': {'GroupName': 'string',
'OwnerAlias': 'string'},
'Subnets': ['string'],
'VpcId': 'string'},
'AwsIamAccessKey': {'AccessKeyId': 'string',
'AccountId': 'string',
'SessionContext': {'Attributes': {'CreationDate': 'string',
'MfaAuthenticated': 'boolean'},
'SessionIssuer': {'AccountId': 'string',
'Arn': 'string',
'PrincipalId': 'string',
'Type': 'string',
'UserName': 'string'}}},
'AwsIamGroup': {'AttachedManagedPolicies': [{'PolicyArn': 'string',
'PolicyName': 'string'}],
'CreateDate': 'string',
'GroupId': 'string',
'GroupName': 'string',
'GroupPolicyList': [{'PolicyName': 'string'}],
'Path': 'string'},
'AwsIamRole': {'AttachedManagedPolicies': [{'PolicyArn': 'string',
'PolicyName': 'string'}],
'InstanceProfileList': [{'Arn': 'string',
'CreateDate': 'string',
'InstanceProfileId': 'string',
'InstanceProfileName': 'string',
'Path': 'string',
'Roles': [{'Arn': 'string',
'AssumeRolePolicyDocument': 'string',
'CreateDate': 'string',
'Path': 'string',
'RoleId': 'string',
'RoleName': 'string'}]}],
'PermissionsBoundary': {'PermissionsBoundaryArn': 'string',
'PermissionsBoundaryType': 'string'},
'RolePolicyList': [{'PolicyName': 'string'}]},
'AwsRedshiftCluster': {'AllowVersionUpgrade': 'boolean',
'AutomatedSnapshotRetentionPeriod': 'integer',
'AvailabilityZone': 'string',
'ClusterAvailabilityStatus': 'string',
'ClusterCreateTime': 'string',
'ClusterIdentifier': 'string',
'ClusterNodes': [{'NodeRole': 'string',
'PrivateIpAddress': 'string',
'PublicIpAddress': 'string'}],
'ClusterParameterGroups': [{'ClusterParameterStatusList': [{'ParameterApplyErrorDescription': 'string',
'ParameterApplyStatus': 'string',
'ParameterName': 'string'}],
'ParameterApplyStatus': 'string',
'ParameterGroupName': 'string'}],
'ClusterPublicKey': 'string',
'ClusterRevisionNumber': 'string',
'ClusterSecurityGroups': [{'ClusterSecurityGroupName': 'string',
'Status': 'string'}],
'ClusterSnapshotCopyStatus': {'DestinationRegion': 'string',
'ManualSnapshotRetentionPeriod': 'integer',
'RetentionPeriod': 'integer',
'SnapshotCopyGrantName': 'string'},
'ClusterStatus': 'string',
'ClusterSubnetGroupName': 'string',
'ClusterVersion': 'string',
'DBName': 'string',
'DeferredMaintenanceWindows': [{'DeferMaintenanceEndTime': 'string',
'DeferMaintenanceIdentifier': 'string',
'DeferMaintenanceStartTime': 'string'}],
'ElasticIpStatus': {'ElasticIp': 'string',
'Status': 'string'},
'ElasticResizeNumberOfNodeOptions': 'string',
'Encrypted': 'boolean',
'Endpoint': {'Address': 'string',
'Port': 'integer'},
'EnhancedVpcRouting': 'boolean',
'ExpectedNextSnapshotScheduleTime': 'string',
'ExpectedNextSnapshotScheduleTimeStatus': 'string',
'HsmStatus': {'HsmClientCertificateIdentifier': 'string',
'HsmConfigurationIdentifier': 'string',
'Status': 'string'},
'IamRoles': [{'ApplyStatus': 'string',
'IamRoleArn': 'string'}],
'KmsKeyId': 'string',
'MaintenanceTrackName': 'string',
'ManualSnapshotRetentionPeriod': 'integer',
'MasterUsername': 'string',
'NextMaintenanceWindowStartTime': 'string',
'NodeType': 'string',
'NumberOfNodes': 'integer',
'PendingActions': ['string'],
'PendingModifiedValues': {'AutomatedSnapshotRetentionPeriod': 'integer',
'ClusterIdentifier': 'string',
'ClusterType': 'string',
'ClusterVersion': 'string',
'EncryptionType': 'string',
'EnhancedVpcRouting': 'boolean',
'MaintenanceTrackName': 'string',
'MasterUserPassword': 'string',
'NodeType': 'string',
'NumberOfNodes': 'integer',
'PubliclyAccessible': 'boolean'},
'PreferredMaintenanceWindow': 'string',
'PubliclyAccessible': 'boolean',
'ResizeInfo': {'AllowCancelResize': 'boolean',
'ResizeType': 'string'},
'RestoreStatus': {'CurrentRestoreRateInMegaBytesPerSecond': 'double',
'ElapsedTimeInSeconds': 'long',
'EstimatedTimeToCompletionInSeconds': 'long',
'ProgressInMegaBytes': 'long',
'SnapshotSizeInMegaBytes': 'long',
'Status': 'string'},
'SnapshotScheduleIdentifier': 'string',
'SnapshotScheduleState': 'string',
'VpcId': 'string',
'VpcSecurityGroups': [{'Status': 'string',
'VpcSecurityGroupId': 'string'}]}},
'ResourceRole': 'string'}}}
Imports security findings generated from an integrated third-party product into Security Hub. This action is requested by the integrated product to import its findings into Security Hub.
The maximum allowed size for a finding is 240 Kb. An error is returned for any finding larger than 240 Kb.
After a finding is created, BatchImportFindings cannot be used to update the following finding fields and objects, which Security Hub customers use to manage their investigation workflow.
Confidence
Criticality
Note
RelatedFindings
Severity
Types
UserDefinedFields
VerificationState
Workflow
See also: AWS API Documentation
Request Syntax
# This section is too large to render. # Please see the AWS API Documentation linked below.Parameters
# This section is too large to render. # Please see the AWS API Documentation linked below.
dict
Response Syntax
{
'FailedCount': 123,
'SuccessCount': 123,
'FailedFindings': [
{
'Id': 'string',
'ErrorCode': 'string',
'ErrorMessage': 'string'
},
]
}
Response Structure
(dict) --
FailedCount (integer) --
The number of findings that failed to import.
SuccessCount (integer) --
The number of findings that were successfully imported.
FailedFindings (list) --
The list of findings that failed to import.
(dict) --
The list of the findings that cannot be imported. For each finding, the list provides the error.
Id (string) --
The identifier of the finding that could not be updated.
ErrorCode (string) --
The code of the error returned by the BatchImportFindings operation.
ErrorMessage (string) --
The message of the error returned by the BatchImportFindings operation.
{'Findings': {'Resources': {'Details': {'AwsApiGatewayRestApi': {'ApiKeySource': 'string',
'BinaryMediaTypes': ['string'],
'CreatedDate': 'string',
'Description': 'string',
'EndpointConfiguration': {'Types': ['string']},
'Id': 'string',
'MinimumCompressionSize': 'integer',
'Name': 'string',
'Version': 'string'},
'AwsApiGatewayStage': {'AccessLogSettings': {'DestinationArn': 'string',
'Format': 'string'},
'CacheClusterEnabled': 'boolean',
'CacheClusterSize': 'string',
'CacheClusterStatus': 'string',
'CanarySettings': {'DeploymentId': 'string',
'PercentTraffic': 'double',
'StageVariableOverrides': {'string': 'string'},
'UseStageCache': 'boolean'},
'ClientCertificateId': 'string',
'CreatedDate': 'string',
'DeploymentId': 'string',
'Description': 'string',
'DocumentationVersion': 'string',
'LastUpdatedDate': 'string',
'MethodSettings': [{'CacheDataEncrypted': 'boolean',
'CacheTtlInSeconds': 'integer',
'CachingEnabled': 'boolean',
'DataTraceEnabled': 'boolean',
'HttpMethod': 'string',
'LoggingLevel': 'string',
'MetricsEnabled': 'boolean',
'RequireAuthorizationForCacheControl': 'boolean',
'ResourcePath': 'string',
'ThrottlingBurstLimit': 'integer',
'ThrottlingRateLimit': 'double',
'UnauthorizedCacheControlHeaderStrategy': 'string'}],
'StageName': 'string',
'TracingEnabled': 'boolean',
'Variables': {'string': 'string'},
'WebAclArn': 'string'},
'AwsApiGatewayV2Api': {'ApiEndpoint': 'string',
'ApiId': 'string',
'ApiKeySelectionExpression': 'string',
'CorsConfiguration': {'AllowCredentials': 'boolean',
'AllowHeaders': ['string'],
'AllowMethods': ['string'],
'AllowOrigins': ['string'],
'ExposeHeaders': ['string'],
'MaxAge': 'integer'},
'CreatedDate': 'string',
'Description': 'string',
'Name': 'string',
'ProtocolType': 'string',
'RouteSelectionExpression': 'string',
'Version': 'string'},
'AwsApiGatewayV2Stage': {'AccessLogSettings': {'DestinationArn': 'string',
'Format': 'string'},
'ApiGatewayManaged': 'boolean',
'AutoDeploy': 'boolean',
'CreatedDate': 'string',
'DefaultRouteSettings': {'DataTraceEnabled': 'boolean',
'DetailedMetricsEnabled': 'boolean',
'LoggingLevel': 'string',
'ThrottlingBurstLimit': 'integer',
'ThrottlingRateLimit': 'double'},
'DeploymentId': 'string',
'Description': 'string',
'LastDeploymentStatusMessage': 'string',
'LastUpdatedDate': 'string',
'RouteSettings': {'DataTraceEnabled': 'boolean',
'DetailedMetricsEnabled': 'boolean',
'LoggingLevel': 'string',
'ThrottlingBurstLimit': 'integer',
'ThrottlingRateLimit': 'double'},
'StageName': 'string',
'StageVariables': {'string': 'string'}},
'AwsCertificateManagerCertificate': {'CertificateAuthorityArn': 'string',
'CreatedAt': 'string',
'DomainName': 'string',
'DomainValidationOptions': [{'DomainName': 'string',
'ResourceRecord': {'Name': 'string',
'Type': 'string',
'Value': 'string'},
'ValidationDomain': 'string',
'ValidationEmails': ['string'],
'ValidationMethod': 'string',
'ValidationStatus': 'string'}],
'ExtendedKeyUsages': [{'Name': 'string',
'OId': 'string'}],
'FailureReason': 'string',
'ImportedAt': 'string',
'InUseBy': ['string'],
'IssuedAt': 'string',
'Issuer': 'string',
'KeyAlgorithm': 'string',
'KeyUsages': [{'Name': 'string'}],
'NotAfter': 'string',
'NotBefore': 'string',
'Options': {'CertificateTransparencyLoggingPreference': 'string'},
'RenewalEligibility': 'string',
'RenewalSummary': {'DomainValidationOptions': [{'DomainName': 'string',
'ResourceRecord': {'Name': 'string',
'Type': 'string',
'Value': 'string'},
'ValidationDomain': 'string',
'ValidationEmails': ['string'],
'ValidationMethod': 'string',
'ValidationStatus': 'string'}],
'RenewalStatus': 'string',
'RenewalStatusReason': 'string',
'UpdatedAt': 'string'},
'Serial': 'string',
'SignatureAlgorithm': 'string',
'Status': 'string',
'Subject': 'string',
'SubjectAlternativeNames': ['string'],
'Type': 'string'},
'AwsCloudFrontDistribution': {'CacheBehaviors': {'Items': [{'ViewerProtocolPolicy': 'string'}]},
'DefaultCacheBehavior': {'ViewerProtocolPolicy': 'string'},
'DefaultRootObject': 'string',
'OriginGroups': {'Items': [{'FailoverCriteria': {'StatusCodes': {'Items': ['integer'],
'Quantity': 'integer'}}}]},
'Origins': {'Items': {'S3OriginConfig': {'OriginAccessIdentity': 'string'}}}},
'AwsCloudTrailTrail': {'CloudWatchLogsLogGroupArn': 'string',
'CloudWatchLogsRoleArn': 'string',
'HasCustomEventSelectors': 'boolean',
'HomeRegion': 'string',
'IncludeGlobalServiceEvents': 'boolean',
'IsMultiRegionTrail': 'boolean',
'IsOrganizationTrail': 'boolean',
'KmsKeyId': 'string',
'LogFileValidationEnabled': 'boolean',
'Name': 'string',
'S3BucketName': 'string',
'S3KeyPrefix': 'string',
'SnsTopicArn': 'string',
'SnsTopicName': 'string',
'TrailArn': 'string'},
'AwsElbLoadBalancer': {'AvailabilityZones': ['string'],
'BackendServerDescriptions': [{'InstancePort': 'integer',
'PolicyNames': ['string']}],
'CanonicalHostedZoneName': 'string',
'CanonicalHostedZoneNameID': 'string',
'CreatedTime': 'string',
'DnsName': 'string',
'HealthCheck': {'HealthyThreshold': 'integer',
'Interval': 'integer',
'Target': 'string',
'Timeout': 'integer',
'UnhealthyThreshold': 'integer'},
'Instances': [{'InstanceId': 'string'}],
'ListenerDescriptions': [{'Listener': {'InstancePort': 'integer',
'InstanceProtocol': 'string',
'LoadBalancerPort': 'integer',
'Protocol': 'string',
'SslCertificateId': 'string'},
'PolicyNames': ['string']}],
'LoadBalancerAttributes': {'AccessLog': {'EmitInterval': 'integer',
'Enabled': 'boolean',
'S3BucketName': 'string',
'S3BucketPrefix': 'string'},
'ConnectionDraining': {'Enabled': 'boolean',
'Timeout': 'integer'},
'ConnectionSettings': {'IdleTimeout': 'integer'},
'CrossZoneLoadBalancing': {'Enabled': 'boolean'}},
'LoadBalancerName': 'string',
'Policies': {'AppCookieStickinessPolicies': [{'CookieName': 'string',
'PolicyName': 'string'}],
'LbCookieStickinessPolicies': [{'CookieExpirationPeriod': 'long',
'PolicyName': 'string'}],
'OtherPolicies': ['string']},
'Scheme': 'string',
'SecurityGroups': ['string'],
'SourceSecurityGroup': {'GroupName': 'string',
'OwnerAlias': 'string'},
'Subnets': ['string'],
'VpcId': 'string'},
'AwsIamAccessKey': {'AccessKeyId': 'string',
'AccountId': 'string',
'SessionContext': {'Attributes': {'CreationDate': 'string',
'MfaAuthenticated': 'boolean'},
'SessionIssuer': {'AccountId': 'string',
'Arn': 'string',
'PrincipalId': 'string',
'Type': 'string',
'UserName': 'string'}}},
'AwsIamGroup': {'AttachedManagedPolicies': [{'PolicyArn': 'string',
'PolicyName': 'string'}],
'CreateDate': 'string',
'GroupId': 'string',
'GroupName': 'string',
'GroupPolicyList': [{'PolicyName': 'string'}],
'Path': 'string'},
'AwsIamRole': {'AttachedManagedPolicies': [{'PolicyArn': 'string',
'PolicyName': 'string'}],
'InstanceProfileList': [{'Arn': 'string',
'CreateDate': 'string',
'InstanceProfileId': 'string',
'InstanceProfileName': 'string',
'Path': 'string',
'Roles': [{'Arn': 'string',
'AssumeRolePolicyDocument': 'string',
'CreateDate': 'string',
'Path': 'string',
'RoleId': 'string',
'RoleName': 'string'}]}],
'PermissionsBoundary': {'PermissionsBoundaryArn': 'string',
'PermissionsBoundaryType': 'string'},
'RolePolicyList': [{'PolicyName': 'string'}]},
'AwsRedshiftCluster': {'AllowVersionUpgrade': 'boolean',
'AutomatedSnapshotRetentionPeriod': 'integer',
'AvailabilityZone': 'string',
'ClusterAvailabilityStatus': 'string',
'ClusterCreateTime': 'string',
'ClusterIdentifier': 'string',
'ClusterNodes': [{'NodeRole': 'string',
'PrivateIpAddress': 'string',
'PublicIpAddress': 'string'}],
'ClusterParameterGroups': [{'ClusterParameterStatusList': [{'ParameterApplyErrorDescription': 'string',
'ParameterApplyStatus': 'string',
'ParameterName': 'string'}],
'ParameterApplyStatus': 'string',
'ParameterGroupName': 'string'}],
'ClusterPublicKey': 'string',
'ClusterRevisionNumber': 'string',
'ClusterSecurityGroups': [{'ClusterSecurityGroupName': 'string',
'Status': 'string'}],
'ClusterSnapshotCopyStatus': {'DestinationRegion': 'string',
'ManualSnapshotRetentionPeriod': 'integer',
'RetentionPeriod': 'integer',
'SnapshotCopyGrantName': 'string'},
'ClusterStatus': 'string',
'ClusterSubnetGroupName': 'string',
'ClusterVersion': 'string',
'DBName': 'string',
'DeferredMaintenanceWindows': [{'DeferMaintenanceEndTime': 'string',
'DeferMaintenanceIdentifier': 'string',
'DeferMaintenanceStartTime': 'string'}],
'ElasticIpStatus': {'ElasticIp': 'string',
'Status': 'string'},
'ElasticResizeNumberOfNodeOptions': 'string',
'Encrypted': 'boolean',
'Endpoint': {'Address': 'string',
'Port': 'integer'},
'EnhancedVpcRouting': 'boolean',
'ExpectedNextSnapshotScheduleTime': 'string',
'ExpectedNextSnapshotScheduleTimeStatus': 'string',
'HsmStatus': {'HsmClientCertificateIdentifier': 'string',
'HsmConfigurationIdentifier': 'string',
'Status': 'string'},
'IamRoles': [{'ApplyStatus': 'string',
'IamRoleArn': 'string'}],
'KmsKeyId': 'string',
'MaintenanceTrackName': 'string',
'ManualSnapshotRetentionPeriod': 'integer',
'MasterUsername': 'string',
'NextMaintenanceWindowStartTime': 'string',
'NodeType': 'string',
'NumberOfNodes': 'integer',
'PendingActions': ['string'],
'PendingModifiedValues': {'AutomatedSnapshotRetentionPeriod': 'integer',
'ClusterIdentifier': 'string',
'ClusterType': 'string',
'ClusterVersion': 'string',
'EncryptionType': 'string',
'EnhancedVpcRouting': 'boolean',
'MaintenanceTrackName': 'string',
'MasterUserPassword': 'string',
'NodeType': 'string',
'NumberOfNodes': 'integer',
'PubliclyAccessible': 'boolean'},
'PreferredMaintenanceWindow': 'string',
'PubliclyAccessible': 'boolean',
'ResizeInfo': {'AllowCancelResize': 'boolean',
'ResizeType': 'string'},
'RestoreStatus': {'CurrentRestoreRateInMegaBytesPerSecond': 'double',
'ElapsedTimeInSeconds': 'long',
'EstimatedTimeToCompletionInSeconds': 'long',
'ProgressInMegaBytes': 'long',
'SnapshotSizeInMegaBytes': 'long',
'Status': 'string'},
'SnapshotScheduleIdentifier': 'string',
'SnapshotScheduleState': 'string',
'VpcId': 'string',
'VpcSecurityGroups': [{'Status': 'string',
'VpcSecurityGroupId': 'string'}]}},
'ResourceRole': 'string'}}}
Returns a list of findings that match the specified criteria.
See also: AWS API Documentation
Request Syntax
client.get_findings(
Filters={
'ProductArn': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'AwsAccountId': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'Id': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'GeneratorId': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'Type': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'FirstObservedAt': [
{
'Start': 'string',
'End': 'string',
'DateRange': {
'Value': 123,
'Unit': 'DAYS'
}
},
],
'LastObservedAt': [
{
'Start': 'string',
'End': 'string',
'DateRange': {
'Value': 123,
'Unit': 'DAYS'
}
},
],
'CreatedAt': [
{
'Start': 'string',
'End': 'string',
'DateRange': {
'Value': 123,
'Unit': 'DAYS'
}
},
],
'UpdatedAt': [
{
'Start': 'string',
'End': 'string',
'DateRange': {
'Value': 123,
'Unit': 'DAYS'
}
},
],
'SeverityProduct': [
{
'Gte': 123.0,
'Lte': 123.0,
'Eq': 123.0
},
],
'SeverityNormalized': [
{
'Gte': 123.0,
'Lte': 123.0,
'Eq': 123.0
},
],
'SeverityLabel': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'Confidence': [
{
'Gte': 123.0,
'Lte': 123.0,
'Eq': 123.0
},
],
'Criticality': [
{
'Gte': 123.0,
'Lte': 123.0,
'Eq': 123.0
},
],
'Title': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'Description': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'RecommendationText': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'SourceUrl': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'ProductFields': [
{
'Key': 'string',
'Value': 'string',
'Comparison': 'EQUALS'|'NOT_EQUALS'
},
],
'ProductName': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'CompanyName': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'UserDefinedFields': [
{
'Key': 'string',
'Value': 'string',
'Comparison': 'EQUALS'|'NOT_EQUALS'
},
],
'MalwareName': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'MalwareType': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'MalwarePath': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'MalwareState': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'NetworkDirection': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'NetworkProtocol': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'NetworkSourceIpV4': [
{
'Cidr': 'string'
},
],
'NetworkSourceIpV6': [
{
'Cidr': 'string'
},
],
'NetworkSourcePort': [
{
'Gte': 123.0,
'Lte': 123.0,
'Eq': 123.0
},
],
'NetworkSourceDomain': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'NetworkSourceMac': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'NetworkDestinationIpV4': [
{
'Cidr': 'string'
},
],
'NetworkDestinationIpV6': [
{
'Cidr': 'string'
},
],
'NetworkDestinationPort': [
{
'Gte': 123.0,
'Lte': 123.0,
'Eq': 123.0
},
],
'NetworkDestinationDomain': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'ProcessName': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'ProcessPath': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'ProcessPid': [
{
'Gte': 123.0,
'Lte': 123.0,
'Eq': 123.0
},
],
'ProcessParentPid': [
{
'Gte': 123.0,
'Lte': 123.0,
'Eq': 123.0
},
],
'ProcessLaunchedAt': [
{
'Start': 'string',
'End': 'string',
'DateRange': {
'Value': 123,
'Unit': 'DAYS'
}
},
],
'ProcessTerminatedAt': [
{
'Start': 'string',
'End': 'string',
'DateRange': {
'Value': 123,
'Unit': 'DAYS'
}
},
],
'ThreatIntelIndicatorType': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'ThreatIntelIndicatorValue': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'ThreatIntelIndicatorCategory': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'ThreatIntelIndicatorLastObservedAt': [
{
'Start': 'string',
'End': 'string',
'DateRange': {
'Value': 123,
'Unit': 'DAYS'
}
},
],
'ThreatIntelIndicatorSource': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'ThreatIntelIndicatorSourceUrl': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'ResourceType': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'ResourceId': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'ResourcePartition': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'ResourceRegion': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'ResourceTags': [
{
'Key': 'string',
'Value': 'string',
'Comparison': 'EQUALS'|'NOT_EQUALS'
},
],
'ResourceAwsEc2InstanceType': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'ResourceAwsEc2InstanceImageId': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'ResourceAwsEc2InstanceIpV4Addresses': [
{
'Cidr': 'string'
},
],
'ResourceAwsEc2InstanceIpV6Addresses': [
{
'Cidr': 'string'
},
],
'ResourceAwsEc2InstanceKeyName': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'ResourceAwsEc2InstanceIamInstanceProfileArn': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'ResourceAwsEc2InstanceVpcId': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'ResourceAwsEc2InstanceSubnetId': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'ResourceAwsEc2InstanceLaunchedAt': [
{
'Start': 'string',
'End': 'string',
'DateRange': {
'Value': 123,
'Unit': 'DAYS'
}
},
],
'ResourceAwsS3BucketOwnerId': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'ResourceAwsS3BucketOwnerName': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'ResourceAwsIamAccessKeyUserName': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'ResourceAwsIamAccessKeyStatus': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'ResourceAwsIamAccessKeyCreatedAt': [
{
'Start': 'string',
'End': 'string',
'DateRange': {
'Value': 123,
'Unit': 'DAYS'
}
},
],
'ResourceContainerName': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'ResourceContainerImageId': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'ResourceContainerImageName': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'ResourceContainerLaunchedAt': [
{
'Start': 'string',
'End': 'string',
'DateRange': {
'Value': 123,
'Unit': 'DAYS'
}
},
],
'ResourceDetailsOther': [
{
'Key': 'string',
'Value': 'string',
'Comparison': 'EQUALS'|'NOT_EQUALS'
},
],
'ComplianceStatus': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'VerificationState': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'WorkflowState': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'WorkflowStatus': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'RecordState': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'RelatedFindingsProductArn': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'RelatedFindingsId': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'NoteText': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'NoteUpdatedAt': [
{
'Start': 'string',
'End': 'string',
'DateRange': {
'Value': 123,
'Unit': 'DAYS'
}
},
],
'NoteUpdatedBy': [
{
'Value': 'string',
'Comparison': 'EQUALS'|'PREFIX'|'NOT_EQUALS'|'PREFIX_NOT_EQUALS'
},
],
'Keyword': [
{
'Value': 'string'
},
]
},
SortCriteria=[
{
'Field': 'string',
'SortOrder': 'asc'|'desc'
},
],
NextToken='string',
MaxResults=123
)
**Parameters**
::
# This section is too large to render.
# Please see the AWS API Documentation linked below.
`AWS API Documentation <https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/GetFindings>`_
dict
Response Syntax
# This section is too large to render. # Please see the AWS API Documentation linked below.
Response Structure
# This section is too large to render. # Please see the AWS API Documentation linked below.