The criteria for an analysis rule for an analyzer. The criteria determine which entities will generate findings.
Syntax
To declare this entity in your AWS CloudFormation template, use the following syntax:
JSON
{
"AccountIds" : [ String, ... ],
"ResourceTags" : [ [ , ... ], ... ]
}
YAML
AccountIds:
- String
ResourceTags:
-
-
Properties
AccountIds-
A list of AWS account IDs to apply to the analysis rule criteria. The accounts cannot include the organization analyzer owner account. Account IDs can only be applied to the analysis rule criteria for organization-level analyzers. The list cannot include more than 2,000 account IDs.
Required: No
Type: Array of String
Update requires: Some interruptions
-
An array of key-value pairs to match for your resources. You can use the set of Unicode letters, digits, whitespace,
_,.,/,=,+, and-.For the tag key, you can specify a value that is 1 to 128 characters in length and cannot be prefixed with
aws:.For the tag value, you can specify a value that is 0 to 256 characters in length. If the specified tag value is 0 characters, the rule is applied to all principals with the specified tag key.
Required: No
Type: Array of Array
Update requires: Some interruptions
