ResourceDetails

Provides details about AWS AppSync message broker. A message broker allows software applications and components to communicate using various programming languages, operating systems, and formal messaging protocols.

Type: AwsAmazonMqBrokerDetails object

Required: No

Provides information about a REST API in version 1 of Amazon API Gateway.

Type: AwsApiGatewayRestApiDetails object

Required: No

Provides information about a version 1 Amazon API Gateway stage.

Type: AwsApiGatewayStageDetails object

Required: No

Provides information about a version 2 API in Amazon API Gateway.

Type: AwsApiGatewayV2ApiDetails object

Required: No

Provides information about a version 2 stage for Amazon API Gateway.

Type: AwsApiGatewayV2StageDetails object

Required: No

Provides details about an AWS AppSync Graph QL API, which lets you query multiple databases, microservices, and APIs from a single GraphQL endpoint.

Type: AwsAppSyncGraphQlApiDetails object

Required: No

Provides information about an Amazon Athena workgroup. A workgroup helps you separate users, teams, applications, or workloads. It also helps you set limits on data processing and track costs.

Type: AwsAthenaWorkGroupDetails object

Required: No

Details for an autoscaling group.

Type: AwsAutoScalingAutoScalingGroupDetails object

Required: No

Provides details about a launch configuration.

Type: AwsAutoScalingLaunchConfigurationDetails object

Required: No

Provides details about an AWS Backup backup plan.

Type: AwsBackupBackupPlanDetails object

Required: No

Provides details about an AWS Backup backup vault.

Type: AwsBackupBackupVaultDetails object

Required: No

Provides details about an AWS Backup backup, or recovery point.

Type: AwsBackupRecoveryPointDetails object

Required: No

Provides details about an AWS Certificate Manager certificate.

Type: AwsCertificateManagerCertificateDetails object

Required: No

Details about an AWS CloudFormation stack. A stack is a collection of AWS resources that you can manage as a single unit.

Type: AwsCloudFormationStackDetails object

Required: No

Details about a CloudFront distribution.

Type: AwsCloudFrontDistributionDetails object

Required: No

Provides details about a CloudTrail trail.

Type: AwsCloudTrailTrailDetails object

Required: No

Details about an Amazon CloudWatch alarm. An alarm allows you to monitor and receive alerts about your AWS resources and applications across multiple Regions.

Type: AwsCloudWatchAlarmDetails object

Required: No

Details for an AWS CodeBuild project.

Type: AwsCodeBuildProjectDetails object

Required: No

Provides details about an AWS Database Migration Service (AWS DMS) endpoint. An endpoint provides connection, data store type, and location information about your data store.

Type: AwsDmsEndpointDetails object

Required: No

Provides details about an AWS DMS replication instance. DMS uses a replication instance to connect to your source data store, read the source data, and format the data for consumption by the target data store.

Type: AwsDmsReplicationInstanceDetails object

Required: No

Provides details about an AWS DMS replication task. A replication task moves a set of data from the source endpoint to the target endpoint.

Type: AwsDmsReplicationTaskDetails object

Required: No

Details about a DynamoDB table.

Type: AwsDynamoDbTableDetails object

Required: No

Provides details about an AWS Client VPN endpoint. A Client VPN endpoint is the resource that you create and configure to enable and manage client VPN sessions. It's the termination point for all client VPN sessions.

Type: AwsEc2ClientVpnEndpointDetails object

Required: No

Details about an Elastic IP address.

Type: AwsEc2EipDetails object

Required: No

Details about an EC2 instance related to a finding.

Type: AwsEc2InstanceDetails object

Required: No

Specifies the properties for creating an Amazon Elastic Compute Cloud (Amazon EC2) launch template.

Type: AwsEc2LaunchTemplateDetails object

Required: No

Details about an EC2 network access control list (ACL).

Type: AwsEc2NetworkAclDetails object

Required: No

Details for an EC2 network interface.

Type: AwsEc2NetworkInterfaceDetails object

Required: No

Provides details about a route table. A route table contains a set of rules, called routes, that determine where to direct network traffic from your subnet or gateway.

Type: AwsEc2RouteTableDetails object

Required: No

Details for an EC2 security group.

Type: AwsEc2SecurityGroupDetails object

Required: No

Details about a subnet in Amazon EC2.

Type: AwsEc2SubnetDetails object

Required: No

Details about an Amazon EC2 transit gateway that interconnects your virtual private clouds (VPC) and on-premises networks.

Type: AwsEc2TransitGatewayDetails object

Required: No

Details for an Amazon EC2 volume.

Type: AwsEc2VolumeDetails object

Required: No

Details for an Amazon EC2 VPC.

Type: AwsEc2VpcDetails object

Required: No

Details about the service configuration for a VPC endpoint service.

Type: AwsEc2VpcEndpointServiceDetails object

Required: No

Details about an Amazon EC2 VPC peering connection. A VPC peering connection is a networking connection between two VPCs that enables you to route traffic between them privately.

Type: AwsEc2VpcPeeringConnectionDetails object

Required: No

Details about an Amazon EC2 VPN connection.

Type: AwsEc2VpnConnectionDetails object

Required: No

Information about an Amazon ECR image.

Type: AwsEcrContainerImageDetails object

Required: No

Information about an Amazon Elastic Container Registry repository.

Type: AwsEcrRepositoryDetails object

Required: No

Details about an Amazon ECS cluster.

Type: AwsEcsClusterDetails object

Required: No

Provides information about a Docker container that's part of a task.

Type: AwsEcsContainerDetails object

Required: No

Details about a service within an ECS cluster.

Type: AwsEcsServiceDetails object

Required: No

Details about a task in a cluster.

Type: AwsEcsTaskDetails object

Required: No

Details about a task definition. A task definition describes the container and volume definitions of an Amazon Elastic Container Service task.

Type: AwsEcsTaskDefinitionDetails object

Required: No

Details about an Amazon EFS access point. An access point is an application-specific view into an EFS file system that applies an operating system user and group, and a file system path, to any file system request made through the access point.

Type: AwsEfsAccessPointDetails object

Required: No

Details about an Amazon EKS cluster.

Type: AwsEksClusterDetails object

Required: No

Details about an Elastic Beanstalk environment.

Type: AwsElasticBeanstalkEnvironmentDetails object

Required: No

Details for an Elasticsearch domain.

Type: AwsElasticsearchDomainDetails object

Required: No

Contains details about a Classic Load Balancer.

Type: AwsElbLoadBalancerDetails object

Required: No

Details about a load balancer.

Type: AwsElbv2LoadBalancerDetails object

Required: No

A schema defines the structure of events that are sent to Amazon EventBridge. Schema registries are containers for schemas. They collect and organize schemas so that your schemas are in logical groups.

Type: AwsEventSchemasRegistryDetails object

Required: No

Provides details about an Amazon EventBridge global endpoint. The endpoint can improve your application’s availability by making it Regional-fault tolerant.

Type: AwsEventsEndpointDetails object

Required: No

Provides details about Amazon EventBridge event bus for an endpoint. An event bus is a router that receives events and delivers them to zero or more destinations, or targets.

Type: AwsEventsEventbusDetails object

Required: No

Provides details about an Amazon GuardDuty detector. A detector is an object that represents the GuardDuty service. A detector is required for GuardDuty to become operational.

Type: AwsGuardDutyDetectorDetails object

Required: No

Details about an IAM access key related to a finding.

Type: AwsIamAccessKeyDetails object

Required: No

Contains details about an IAM group.

Type: AwsIamGroupDetails object

Required: No

Details about an IAM permissions policy.

Type: AwsIamPolicyDetails object

Required: No

Details about an IAM role.

Type: AwsIamRoleDetails object

Required: No

Details about an IAM user.

Type: AwsIamUserDetails object

Required: No

Details about an Amazon Kinesis data stream.

Type: AwsKinesisStreamDetails object

Required: No

Details about an AWS KMS key.

Type: AwsKmsKeyDetails object

Required: No

Details about a Lambda function.

Type: AwsLambdaFunctionDetails object

Required: No

Details for a Lambda layer version.

Type: AwsLambdaLayerVersionDetails object

Required: No

Provides details about an Amazon Managed Streaming for Apache Kafka (Amazon MSK) cluster.

Type: AwsMskClusterDetails object

Required: No

Details about an AWS Network Firewall firewall.

Type: AwsNetworkFirewallFirewallDetails object

Required: No

Details about an AWS Network Firewall firewall policy.

Type: AwsNetworkFirewallFirewallPolicyDetails object

Required: No

Details about an AWS Network Firewall rule group.

Type: AwsNetworkFirewallRuleGroupDetails object

Required: No

Details about an Amazon OpenSearch Service domain.

Type: AwsOpenSearchServiceDomainDetails object

Required: No

Details about an Amazon RDS database cluster.

Type: AwsRdsDbClusterDetails object

Required: No

Details about an Amazon RDS database cluster snapshot.

Type: AwsRdsDbClusterSnapshotDetails object

Required: No

Details about an Amazon RDS database instance.

Type: AwsRdsDbInstanceDetails object

Required: No

Details about an Amazon RDS DB security group.

Type: AwsRdsDbSecurityGroupDetails object

Required: No

Details about an Amazon RDS database snapshot.

Type: AwsRdsDbSnapshotDetails object

Required: No

Details about an RDS event notification subscription.

Type: AwsRdsEventSubscriptionDetails object

Required: No

Contains details about an Amazon Redshift cluster.

Type: AwsRedshiftClusterDetails object

Required: No

Provides details about an Amazon Route 53 hosted zone, including the four name servers assigned to the hosted zone. A hosted zone represents a collection of records that can be managed together, belonging to a single parent domain name.

Type: AwsRoute53HostedZoneDetails object

Required: No

Provides details about an Amazon Simple Storage Service (Amazon S3) access point. S3 access points are named network endpoints that are attached to S3 buckets that you can use to perform S3 object operations.

Type: AwsS3AccessPointDetails object

Required: No

Details about the Amazon S3 Public Access Block configuration for an account.

Type: AwsS3AccountPublicAccessBlockDetails object

Required: No

Details about an S3 bucket related to a finding.

Type: AwsS3BucketDetails object

Required: No

Details about an S3 object related to a finding.

Type: AwsS3ObjectDetails object

Required: No

Provides details about an Amazon SageMaker notebook instance.

Type: AwsSageMakerNotebookInstanceDetails object

Required: No

Details about a Secrets Manager secret.

Type: AwsSecretsManagerSecretDetails object

Required: No

Details about an SNS topic.

Type: AwsSnsTopicDetails object

Required: No

Details about an SQS queue.

Type: AwsSqsQueueDetails object

Required: No

Provides information about the state of a patch on an instance based on the patch baseline that was used to patch the instance.

Type: AwsSsmPatchComplianceDetails object

Required: No

Provides details about an AWS Step Functions state machine, which is a workflow consisting of a series of event-driven steps.

Type: AwsStepFunctionStateMachineDetails object

Required: No

Details about a rate-based rule for global resources.

Type: AwsWafRateBasedRuleDetails object

Required: No

Details about a rate-based rule for Regional resources.

Type: AwsWafRegionalRateBasedRuleDetails object

Required: No

Details about an AWS WAF rule for Regional resources.

Type: AwsWafRegionalRuleDetails object

Required: No

Details about an AWS WAF rule group for Regional resources.

Type: AwsWafRegionalRuleGroupDetails object

Required: No

Details about an AWS WAF web access control list (web ACL) for Regional resources.

Type: AwsWafRegionalWebAclDetails object

Required: No

Details about an AWS WAF rule for global resources.

Type: AwsWafRuleDetails object

Required: No

Details about an AWS WAF rule group for global resources.

Type: AwsWafRuleGroupDetails object

Required: No

Details about an AWS WAFv2 rule group.

Type: AwsWafv2RuleGroupDetails object

Required: No

Details about an AWS WAFv2 web Access Control List (ACL).

Type: AwsWafv2WebAclDetails object

Required: No

Details for an AWS WAF web ACL.

Type: AwsWafWebAclDetails object

Required: No

Information about the encryption configuration for AWS X-Ray.

Type: AwsXrayEncryptionConfigDetails object

Required: No

Details about a container resource related to a finding.

Type: ContainerDetails object

Required: No

Details about a resource that are not available in a type-specific details object. Use the Other object in the following cases.

Type: String to string map

Key Pattern: .*\S.*

Value Pattern: .*\S.*

Required: No