Class | Description |
---|---|
AcceptAdministratorInvitationRequest | |
AcceptAdministratorInvitationResult | |
AcceptInvitationRequest | |
AcceptInvitationResult | |
AccountDetails |
The details of an Amazon Web Services account.
|
Action |
Provides details about one of the following actions that affects or that was taken on a resource:
|
ActionLocalIpDetails |
Provides information about the IP address where the scanned port is located.
|
ActionLocalPortDetails |
For
NetworkConnectionAction and PortProbeDetails , LocalPortDetails provides
information about the local port that was involved in the action. |
ActionRemoteIpDetails |
For
AwsApiAction , NetworkConnectionAction , and PortProbeAction ,
RemoteIpDetails provides information about the remote IP address that was involved in the action. |
ActionRemotePortDetails |
Provides information about the remote port that was involved in an attempted network connection.
|
ActionTarget |
An
ActionTarget object. |
Adjustment |
An adjustment to the CVSS metric.
|
AdminAccount |
Represents a Security Hub administrator account designated by an organization management account.
|
AssociatedStandard |
Information about an enabled security standard in which a security control is enabled.
|
AssociationSetDetails |
The associations between a route table and one or more subnets or a gateway.
|
AssociationStateDetails |
Describes the state of an association between a route table and a subnet or gateway.
|
AvailabilityZone |
Information about an Availability Zone.
|
AwsAmazonMqBrokerDetails |
Provides details about an Amazon MQ message broker.
|
AwsAmazonMqBrokerEncryptionOptionsDetails |
Provides details about broker encryption options.
|
AwsAmazonMqBrokerLdapServerMetadataDetails |
The metadata of the Lightweight Directory Access Protocol (LDAP) server used to authenticate and authorize
connections to the broker.
|
AwsAmazonMqBrokerLogsDetails |
Provides information about logs to be activated for the specified broker.
|
AwsAmazonMqBrokerLogsPendingDetails |
Provides information about logs to be activated for the specified broker.
|
AwsAmazonMqBrokerMaintenanceWindowStartTimeDetails |
The scheduled time period (UTC) during which Amazon MQ begins to apply pending updates or patches to the broker.
|
AwsAmazonMqBrokerUsersDetails |
Provides details about the broker usernames for the specified broker.
|
AwsApiCallAction |
Provided if
ActionType is AWS_API_CALL . |
AwsApiCallActionDomainDetails |
Provided if
CallerType is domain . |
AwsApiGatewayAccessLogSettings |
Contains information about settings for logging access for the stage.
|
AwsApiGatewayCanarySettings |
Contains information about settings for canary deployment in the stage.
|
AwsApiGatewayEndpointConfiguration |
Contains information about the endpoints for the API.
|
AwsApiGatewayMethodSettings |
Defines settings for a method for the stage.
|
AwsApiGatewayRestApiDetails |
Contains information about a REST API in version 1 of Amazon API Gateway.
|
AwsApiGatewayStageDetails |
Provides information about a version 1 Amazon API Gateway stage.
|
AwsApiGatewayV2ApiDetails |
Contains information about a version 2 API in Amazon API Gateway.
|
AwsApiGatewayV2RouteSettings |
Contains route settings for a stage.
|
AwsApiGatewayV2StageDetails |
Contains information about a version 2 stage for Amazon API Gateway.
|
AwsAppSyncGraphQlApiAdditionalAuthenticationProvidersDetails |
A list of additional authentication providers for the GraphqlApi API.
|
AwsAppSyncGraphQlApiDetails |
Provides details about an AppSync Graph QL API, which lets you query multiple databases, microservices, and APIs from
a single GraphQL endpoint.
|
AwsAppSyncGraphQlApiLambdaAuthorizerConfigDetails |
Specifies the authorization configuration for using an Lambda function with your AppSync GraphQL API endpoint.
|
AwsAppSyncGraphQlApiLogConfigDetails |
Specifies the logging configuration when writing GraphQL operations and tracing to Amazon CloudWatch for an AppSync
GraphQL API.
|
AwsAppSyncGraphQlApiOpenIdConnectConfigDetails |
Specifies the authorization configuration for using an OpenID Connect compliant service with your AppSync GraphQL API
endpoint.
|
AwsAppSyncGraphQlApiUserPoolConfigDetails |
Specifies the authorization configuration for using Amazon Cognito user pools with your AppSync GraphQL API endpoint.
|
AwsAutoScalingAutoScalingGroupAvailabilityZonesListDetails |
An Availability Zone for the automatic scaling group.
|
AwsAutoScalingAutoScalingGroupDetails |
Provides details about an auto scaling group.
|
AwsAutoScalingAutoScalingGroupLaunchTemplateLaunchTemplateSpecification |
Details about the launch template to use.
|
AwsAutoScalingAutoScalingGroupMixedInstancesPolicyDetails |
The mixed instances policy for the automatic scaling group.
|
AwsAutoScalingAutoScalingGroupMixedInstancesPolicyInstancesDistributionDetails |
Information about the instances distribution.
|
AwsAutoScalingAutoScalingGroupMixedInstancesPolicyLaunchTemplateDetails |
Describes a launch template and overrides for a mixed instances policy.
|
AwsAutoScalingAutoScalingGroupMixedInstancesPolicyLaunchTemplateLaunchTemplateSpecification |
Details about the launch template to use for a mixed instances policy.
|
AwsAutoScalingAutoScalingGroupMixedInstancesPolicyLaunchTemplateOverridesListDetails |
Property values to use to override the values in the launch template.
|
AwsAutoScalingLaunchConfigurationBlockDeviceMappingsDetails |
A block device for the instance.
|
AwsAutoScalingLaunchConfigurationBlockDeviceMappingsEbsDetails |
Parameters that are used to automatically set up EBS volumes when an instance is launched.
|
AwsAutoScalingLaunchConfigurationDetails |
Details about a launch configuration.
|
AwsAutoScalingLaunchConfigurationInstanceMonitoringDetails |
Information about the type of monitoring for instances in the group.
|
AwsAutoScalingLaunchConfigurationMetadataOptions |
The metadata options for the instances.
|
AwsBackupBackupPlanAdvancedBackupSettingsDetails |
Provides a list of backup options for each resource type.
|
AwsBackupBackupPlanBackupPlanDetails |
Provides details about an Backup backup plan and an array of
BackupRule objects, each of which specifies
a backup rule. |
AwsBackupBackupPlanDetails |
Provides details about an Backup backup plan and an array of
BackupRule objects, each of which specifies
a backup rule. |
AwsBackupBackupPlanLifecycleDetails |
Provides lifecycle details for the backup plan.
|
AwsBackupBackupPlanRuleCopyActionsDetails |
An array of
CopyAction objects, each of which contains details of the copy operation. |
AwsBackupBackupPlanRuleDetails |
Provides details about an array of
BackupRule objects, each of which specifies a scheduled task that is
used to back up a selection of resources. |
AwsBackupBackupVaultDetails |
Provides details about an Backup backup vault.
|
AwsBackupBackupVaultNotificationsDetails |
Provides details about the Amazon SNS event notifications for the specified backup vault.
|
AwsBackupRecoveryPointCalculatedLifecycleDetails |
Specifies how long in days before a recovery point transitions to cold storage or is deleted.
|
AwsBackupRecoveryPointCreatedByDetails |
Contains information about the backup plan and rule that Backup used to initiate the recovery point backup.
|
AwsBackupRecoveryPointDetails |
Contains detailed information about the recovery points stored in an Backup backup vault.
|
AwsBackupRecoveryPointLifecycleDetails |
Contains an array of Transition objects specifying how long in days before a recovery point transitions to cold
storage or is deleted.
|
AwsCertificateManagerCertificateDetails |
Provides details about an Certificate Manager certificate.
|
AwsCertificateManagerCertificateDomainValidationOption |
Contains information about one of the following:
|
AwsCertificateManagerCertificateExtendedKeyUsage |
Contains information about an extended key usage X.509 v3 extension object.
|
AwsCertificateManagerCertificateKeyUsage |
Contains information about a key usage X.509 v3 extension object.
|
AwsCertificateManagerCertificateOptions |
Contains other options for the certificate.
|
AwsCertificateManagerCertificateRenewalSummary |
Contains information about the Certificate Manager managed renewal for an
AMAZON_ISSUED certificate. |
AwsCertificateManagerCertificateResourceRecord |
Provides details about the CNAME record that is added to the DNS database for domain validation.
|
AwsCloudFormationStackDetails |
Nests a stack as a resource in a top-level template.
|
AwsCloudFormationStackDriftInformationDetails |
Provides information about the stack's conformity to its expected template configuration.
|
AwsCloudFormationStackOutputsDetails |
Provides information about the CloudFormation stack output.
|
AwsCloudFrontDistributionCacheBehavior |
Information about a cache behavior for the distribution.
|
AwsCloudFrontDistributionCacheBehaviors |
Provides information about caching for the CloudFront distribution.
|
AwsCloudFrontDistributionDefaultCacheBehavior |
Contains information about the default cache configuration for the CloudFront distribution.
|
AwsCloudFrontDistributionDetails |
A CloudFront distribution configuration.
|
AwsCloudFrontDistributionLogging |
A complex type that controls whether access logs are written for the CloudFront distribution.
|
AwsCloudFrontDistributionOriginCustomOriginConfig |
A custom origin.
|
AwsCloudFrontDistributionOriginGroup |
Information about an origin group for the CloudFront distribution.
|
AwsCloudFrontDistributionOriginGroupFailover |
Provides information about when an origin group fails over.
|
AwsCloudFrontDistributionOriginGroupFailoverStatusCodes |
The status codes that cause an origin group to fail over.
|
AwsCloudFrontDistributionOriginGroups |
Provides information about origin groups that are associated with the CloudFront distribution.
|
AwsCloudFrontDistributionOriginItem |
A complex type that describes the Amazon S3 bucket, HTTP server (for example, a web server), AWS Elemental
MediaStore, or other server from which CloudFront gets your files.
|
AwsCloudFrontDistributionOrigins |
A complex type that contains information about origins and origin groups for this CloudFront distribution.
|
AwsCloudFrontDistributionOriginS3OriginConfig |
Information about an origin that is an Amazon S3 bucket that is not configured with static website hosting.
|
AwsCloudFrontDistributionOriginSslProtocols |
A complex type that contains information about the SSL/TLS protocols that CloudFront can use when establishing an
HTTPS connection with your origin.
|
AwsCloudFrontDistributionViewerCertificate |
Provides information about the TLS/SSL configuration that the CloudFront distribution uses to communicate with
viewers.
|
AwsCloudTrailTrailDetails |
Provides details about a CloudTrail trail.
|
AwsCloudWatchAlarmDetails |
Specifies an alarm and associates it with the specified metric or metric math expression.
|
AwsCloudWatchAlarmDimensionsDetails |
Details about the dimensions for the metric associated with the alarm.
|
AwsCodeBuildProjectArtifactsDetails |
Information about the build artifacts for the CodeBuild project.
|
AwsCodeBuildProjectDetails |
Information about an CodeBuild project.
|
AwsCodeBuildProjectEnvironment |
Information about the build environment for this build project.
|
AwsCodeBuildProjectEnvironmentEnvironmentVariablesDetails |
Information about an environment variable that is available to builds for the build project.
|
AwsCodeBuildProjectEnvironmentRegistryCredential |
The credentials for access to a private registry.
|
AwsCodeBuildProjectLogsConfigCloudWatchLogsDetails |
Information about CloudWatch Logs for the build project.
|
AwsCodeBuildProjectLogsConfigDetails |
Information about logs for the build project.
|
AwsCodeBuildProjectLogsConfigS3LogsDetails |
Information about logs built to an S3 bucket for a build project.
|
AwsCodeBuildProjectSource |
Information about the build input source code for this build project.
|
AwsCodeBuildProjectVpcConfig |
Information about the VPC configuration that CodeBuild accesses.
|
AwsCorsConfiguration |
Contains the cross-origin resource sharing (CORS) configuration for the API.
|
AwsDynamoDbTableAttributeDefinition |
Contains a definition of an attribute for the table.
|
AwsDynamoDbTableBillingModeSummary |
Provides information about the billing for read/write capacity on the table.
|
AwsDynamoDbTableDetails |
Provides details about a DynamoDB table.
|
AwsDynamoDbTableGlobalSecondaryIndex |
Information abut a global secondary index for the table.
|
AwsDynamoDbTableKeySchema |
A component of the key schema for the DynamoDB table, a global secondary index, or a local secondary index.
|
AwsDynamoDbTableLocalSecondaryIndex |
Information about a local secondary index for a DynamoDB table.
|
AwsDynamoDbTableProjection |
For global and local secondary indexes, identifies the attributes that are copied from the table into the index.
|
AwsDynamoDbTableProvisionedThroughput |
Information about the provisioned throughput for the table or for a global secondary index.
|
AwsDynamoDbTableProvisionedThroughputOverride |
Replica-specific configuration for the provisioned throughput.
|
AwsDynamoDbTableReplica |
Information about a replica of a DynamoDB table.
|
AwsDynamoDbTableReplicaGlobalSecondaryIndex |
Information about a global secondary index for a DynamoDB table replica.
|
AwsDynamoDbTableRestoreSummary |
Information about the restore for the table.
|
AwsDynamoDbTableSseDescription |
Information about the server-side encryption for the table.
|
AwsDynamoDbTableStreamSpecification |
The current DynamoDB Streams configuration for the table.
|
AwsEc2EipDetails |
Information about an Elastic IP address.
|
AwsEc2InstanceDetails |
The details of an Amazon EC2 instance.
|
AwsEc2InstanceMetadataOptions |
Metadata options that allow you to configure and secure the Amazon EC2 instance.
|
AwsEc2InstanceMonitoringDetails |
The type of monitoring that’s turned on for an Amazon EC2 instance.
|
AwsEc2InstanceNetworkInterfacesDetails |
Identifies a network interface for the Amazon EC2 instance.
|
AwsEc2LaunchTemplateDataBlockDeviceMappingSetDetails |
Information about a block device mapping for an Amazon Elastic Compute Cloud (Amazon EC2) launch template.
|
AwsEc2LaunchTemplateDataBlockDeviceMappingSetEbsDetails |
Parameters for a block device for an Amazon Elastic Block Store (Amazon EBS) volume in an Amazon EC2 launch template.
|
AwsEc2LaunchTemplateDataCapacityReservationSpecificationCapacityReservationTargetDetails |
Information about the target Capacity Reservation or Capacity Reservation group in which to run an Amazon EC2
instance.
|
AwsEc2LaunchTemplateDataCapacityReservationSpecificationDetails |
Specifies the Capacity Reservation targeting option of an Amazon EC2 instance.
|
AwsEc2LaunchTemplateDataCpuOptionsDetails |
Specifies the CPU options for an Amazon EC2 instance.
|
AwsEc2LaunchTemplateDataCreditSpecificationDetails |
Specifies the credit option for CPU usage of a T2, T3, or T3a Amazon EC2 instance.
|
AwsEc2LaunchTemplateDataDetails |
The information to include in an Amazon Elastic Compute Cloud (Amazon EC2) launch template.
|
AwsEc2LaunchTemplateDataElasticGpuSpecificationSetDetails |
Provides details about an Elastic Graphics specification for an Amazon EC2 launch template.
|
AwsEc2LaunchTemplateDataElasticInferenceAcceleratorSetDetails |
Provides details for an Amazon Elastic Inference accelerator.
|
AwsEc2LaunchTemplateDataEnclaveOptionsDetails |
Indicates whether the instance is enabled for Amazon Web Services Nitro Enclaves.
|
AwsEc2LaunchTemplateDataHibernationOptionsDetails |
Specifies whether your Amazon EC2 instance is configured for hibernation.
|
AwsEc2LaunchTemplateDataIamInstanceProfileDetails |
Provides details for an Identity and Access Management (IAM) instance profile, which is a container for an IAM role
for your instance.
|
AwsEc2LaunchTemplateDataInstanceMarketOptionsDetails |
Provides details about the market (purchasing) option for an Amazon EC2 instance.
|
AwsEc2LaunchTemplateDataInstanceMarketOptionsSpotOptionsDetails |
Provides details about the market (purchasing) options for Spot Instances.
|
AwsEc2LaunchTemplateDataInstanceRequirementsAcceleratorCountDetails |
The minimum and maximum number of accelerators (GPUs, FPGAs, or Amazon Web Services Inferentia chips) on an Amazon
EC2 instance.
|
AwsEc2LaunchTemplateDataInstanceRequirementsAcceleratorTotalMemoryMiBDetails |
The minimum and maximum amount of memory, in MiB, for the accelerators on an Amazon EC2 instance.
|
AwsEc2LaunchTemplateDataInstanceRequirementsBaselineEbsBandwidthMbpsDetails |
The minimum and maximum baseline bandwidth to Amazon Elastic Block Store (Amazon EBS), in Mbps.
|
AwsEc2LaunchTemplateDataInstanceRequirementsDetails |
The attributes for the Amazon EC2 instance types.
|
AwsEc2LaunchTemplateDataInstanceRequirementsMemoryGiBPerVCpuDetails |
The minimum and maximum amount of memory per vCPU, in GiB.
|
AwsEc2LaunchTemplateDataInstanceRequirementsMemoryMiBDetails |
The minimum and maximum amount of memory, in MiB, for an Amazon EC2 instance.
|
AwsEc2LaunchTemplateDataInstanceRequirementsNetworkInterfaceCountDetails |
The minimum and maximum number of network interfaces to be attached to an Amazon EC2 instance.
|
AwsEc2LaunchTemplateDataInstanceRequirementsTotalLocalStorageGBDetails |
The minimum and maximum amount of total local storage, in GB, that an Amazon EC2 instance uses.
|
AwsEc2LaunchTemplateDataInstanceRequirementsVCpuCountDetails |
The minimum and maximum number of vCPUs for an Amazon EC2 instance.
|
AwsEc2LaunchTemplateDataLicenseSetDetails |
Provides details about the license configuration for an Amazon EC2 instance.
|
AwsEc2LaunchTemplateDataMaintenanceOptionsDetails |
The maintenance options of an Amazon EC2 instance.
|
AwsEc2LaunchTemplateDataMetadataOptionsDetails |
Specifies the metadata options for an Amazon EC2 instance.
|
AwsEc2LaunchTemplateDataMonitoringDetails |
The monitoring for an Amazon EC2 instance.
|
AwsEc2LaunchTemplateDataNetworkInterfaceSetDetails |
One or more network interfaces to attach to an Amazon EC2 instance.
|
AwsEc2LaunchTemplateDataNetworkInterfaceSetIpv4PrefixesDetails |
Provides details on one or more IPv4 prefixes for a network interface.
|
AwsEc2LaunchTemplateDataNetworkInterfaceSetIpv6AddressesDetails |
Specifies an IPv6 address in an Amazon EC2 launch template.
|
AwsEc2LaunchTemplateDataNetworkInterfaceSetIpv6PrefixesDetails |
Provides details on one or more IPv6 prefixes to be assigned to the network interface.
|
AwsEc2LaunchTemplateDataNetworkInterfaceSetPrivateIpAddressesDetails |
One or more private IPv4 addresses.
|
AwsEc2LaunchTemplateDataPlacementDetails |
Provides details about the placement of an Amazon EC2 instance.
|
AwsEc2LaunchTemplateDataPrivateDnsNameOptionsDetails |
Describes the options for Amazon EC2 instance hostnames.
|
AwsEc2LaunchTemplateDetails |
Specifies the properties for creating an Amazon Elastic Compute Cloud (Amazon EC2) launch template.
|
AwsEc2NetworkAclAssociation |
An association between the network ACL and a subnet.
|
AwsEc2NetworkAclDetails |
Contains details about an Amazon EC2 network access control list (ACL).
|
AwsEc2NetworkAclEntry |
A rule for the network ACL.
|
AwsEc2NetworkInterfaceAttachment |
Information about the network interface attachment.
|
AwsEc2NetworkInterfaceDetails |
Details about the network interface
|
AwsEc2NetworkInterfaceIpV6AddressDetail |
Provides information about an IPV6 address that is associated with the network interface.
|
AwsEc2NetworkInterfacePrivateIpAddressDetail |
Provides information about a private IPv4 address that is with the network interface.
|
AwsEc2NetworkInterfaceSecurityGroup |
A security group associated with the network interface.
|
AwsEc2RouteTableDetails |
Provides details about a route table for the specified VPC.
|
AwsEc2SecurityGroupDetails |
Details about an Amazon EC2 security group.
|
AwsEc2SecurityGroupIpPermission |
An IP permission for an EC2 security group.
|
AwsEc2SecurityGroupIpRange |
A range of IPv4 addresses.
|
AwsEc2SecurityGroupIpv6Range |
A range of IPv6 addresses.
|
AwsEc2SecurityGroupPrefixListId |
A prefix list ID.
|
AwsEc2SecurityGroupUserIdGroupPair |
A relationship between a security group and a user.
|
AwsEc2SubnetDetails |
Contains information about a subnet in Amazon EC2.
|
AwsEc2TransitGatewayDetails |
Information about an Amazon Web Services Amazon EC2 Transit Gateway that interconnects virtual private clouds (VPCs)
and on-premises networks.
|
AwsEc2VolumeAttachment |
An attachment to an Amazon EC2 volume.
|
AwsEc2VolumeDetails |
Details about an EC2 volume.
|
AwsEc2VpcDetails |
Details about an EC2 VPC.
|
AwsEc2VpcEndpointServiceDetails |
Contains details about the service configuration for a VPC endpoint service.
|
AwsEc2VpcEndpointServiceServiceTypeDetails |
The service type information for a VPC endpoint service.
|
AwsEc2VpcPeeringConnectionDetails |
Provides information about a VPC peering connection between two VPCs: a requester VPC that you own and an accepter
VPC with which to create the connection.
|
AwsEc2VpcPeeringConnectionStatusDetails |
Details about the status of the VPC peering connection.
|
AwsEc2VpcPeeringConnectionVpcInfoDetails |
Describes a VPC in a VPC peering connection.
|
AwsEc2VpnConnectionDetails |
Details about an Amazon EC2 VPN connection.
|
AwsEc2VpnConnectionOptionsDetails |
VPN connection options.
|
AwsEc2VpnConnectionOptionsTunnelOptionsDetails |
The VPN tunnel options.
|
AwsEc2VpnConnectionRoutesDetails |
A static routes associated with the VPN connection.
|
AwsEc2VpnConnectionVgwTelemetryDetails |
Information about the VPN tunnel.
|
AwsEcrContainerImageDetails |
Information about an Amazon ECR image.
|
AwsEcrRepositoryDetails |
Provides information about an Amazon Elastic Container Registry repository.
|
AwsEcrRepositoryImageScanningConfigurationDetails |
The image scanning configuration for a repository.
|
AwsEcrRepositoryLifecyclePolicyDetails |
Information about the lifecycle policy for the repository.
|
AwsEcsClusterClusterSettingsDetails |
Indicates whether to enable CloudWatch Container Insights for the ECS cluster.
|
AwsEcsClusterConfigurationDetails |
The run command configuration for the cluster.
|
AwsEcsClusterConfigurationExecuteCommandConfigurationDetails |
Contains the run command configuration for the cluster.
|
AwsEcsClusterConfigurationExecuteCommandConfigurationLogConfigurationDetails |
The log configuration for the results of the run command actions.
|
AwsEcsClusterDefaultCapacityProviderStrategyDetails |
The default capacity provider strategy for the cluster.
|
AwsEcsClusterDetails |
Provides details about an Amazon ECS cluster.
|
AwsEcsContainerDetails |
Provides information about an Amazon ECS container.
|
AwsEcsServiceCapacityProviderStrategyDetails |
Strategy item for the capacity provider strategy that the service uses.
|
AwsEcsServiceDeploymentConfigurationDeploymentCircuitBreakerDetails |
Determines whether a service deployment fails if a service cannot reach a steady state.
|
AwsEcsServiceDeploymentConfigurationDetails |
Optional deployment parameters for the service.
|
AwsEcsServiceDeploymentControllerDetails |
Information about the deployment controller type that the service uses.
|
AwsEcsServiceDetails |
Provides details about a service within an ECS cluster.
|
AwsEcsServiceLoadBalancersDetails |
Information about a load balancer that the service uses.
|
AwsEcsServiceNetworkConfigurationAwsVpcConfigurationDetails |
For tasks that use the
awsvpc networking mode, the VPC subnet and security group configuration. |
AwsEcsServiceNetworkConfigurationDetails |
For tasks that use the
awsvpc networking mode, the VPC subnet and security group configuration. |
AwsEcsServicePlacementConstraintsDetails |
A placement constraint for the tasks in the service.
|
AwsEcsServicePlacementStrategiesDetails |
A placement strategy that determines how to place the tasks for the service.
|
AwsEcsServiceServiceRegistriesDetails |
Information about a service discovery registry to assign to the service.
|
AwsEcsTaskDefinitionContainerDefinitionsDependsOnDetails |
A dependency that is defined for container startup and shutdown.
|
AwsEcsTaskDefinitionContainerDefinitionsDetails |
A container definition that describes a container in the task.
|
AwsEcsTaskDefinitionContainerDefinitionsEnvironmentDetails |
An environment variable to pass to the container.
|
AwsEcsTaskDefinitionContainerDefinitionsEnvironmentFilesDetails |
A file that contain environment variables to pass to a container.
|
AwsEcsTaskDefinitionContainerDefinitionsExtraHostsDetails |
A hostname and IP address mapping to append to the /etc/hosts file on the container.
|
AwsEcsTaskDefinitionContainerDefinitionsFirelensConfigurationDetails |
The FireLens configuration for the container.
|
AwsEcsTaskDefinitionContainerDefinitionsHealthCheckDetails |
The container health check command and associated configuration parameters for the container.
|
AwsEcsTaskDefinitionContainerDefinitionsLinuxParametersCapabilitiesDetails |
The Linux capabilities for the container that are added to or dropped from the default configuration provided by
Docker.
|
AwsEcsTaskDefinitionContainerDefinitionsLinuxParametersDetails |
>Linux-specific modifications that are applied to the container, such as Linux kernel capabilities.
|
AwsEcsTaskDefinitionContainerDefinitionsLinuxParametersDevicesDetails |
A host device to expose to the container.
|
AwsEcsTaskDefinitionContainerDefinitionsLinuxParametersTmpfsDetails |
The container path, mount options, and size (in MiB) of a tmpfs mount.
|
AwsEcsTaskDefinitionContainerDefinitionsLogConfigurationDetails |
The log configuration specification for the container.
|
AwsEcsTaskDefinitionContainerDefinitionsLogConfigurationSecretOptionsDetails |
A secret to pass to the log configuration.
|
AwsEcsTaskDefinitionContainerDefinitionsMountPointsDetails |
A mount point for the data volumes in the container.
|
AwsEcsTaskDefinitionContainerDefinitionsPortMappingsDetails |
A port mapping for the container.
|
AwsEcsTaskDefinitionContainerDefinitionsRepositoryCredentialsDetails |
The private repository authentication credentials to use.
|
AwsEcsTaskDefinitionContainerDefinitionsResourceRequirementsDetails |
A resource to assign to a container.
|
AwsEcsTaskDefinitionContainerDefinitionsSecretsDetails |
A secret to pass to the container.
|
AwsEcsTaskDefinitionContainerDefinitionsSystemControlsDetails |
A namespaced kernel parameter to set in the container.
|
AwsEcsTaskDefinitionContainerDefinitionsUlimitsDetails |
A ulimit to set in the container.
|
AwsEcsTaskDefinitionContainerDefinitionsVolumesFromDetails |
A data volume to mount from another container.
|
AwsEcsTaskDefinitionDetails |
Details about a task definition.
|
AwsEcsTaskDefinitionInferenceAcceleratorsDetails |
An Elastic Inference accelerator to use for the containers in the task.
|
AwsEcsTaskDefinitionPlacementConstraintsDetails |
A placement constraint object to use for tasks.
|
AwsEcsTaskDefinitionProxyConfigurationDetails |
The configuration details for the App Mesh proxy.
|
AwsEcsTaskDefinitionProxyConfigurationProxyConfigurationPropertiesDetails |
A network configuration parameter to provide to the Container Network Interface (CNI) plugin.
|
AwsEcsTaskDefinitionVolumesDetails |
A data volume to mount from another container.
|
AwsEcsTaskDefinitionVolumesDockerVolumeConfigurationDetails |
Information about a Docker volume.
|
AwsEcsTaskDefinitionVolumesEfsVolumeConfigurationAuthorizationConfigDetails |
|
AwsEcsTaskDefinitionVolumesEfsVolumeConfigurationDetails |
Information about the Amazon Elastic File System file system that is used for task storage.
|
AwsEcsTaskDefinitionVolumesHostDetails |
Information about a bind mount host volume.
|
AwsEcsTaskDetails |
Provides details about a task in a cluster.
|
AwsEcsTaskVolumeDetails |
Provides information about a data volume that's used in a task definition.
|
AwsEcsTaskVolumeHostDetails |
Provides details on a container instance bind mount host volume.
|
AwsEfsAccessPointDetails |
Provides information about an Amazon EFS access point.
|
AwsEfsAccessPointPosixUserDetails |
Provides details for all file system operations using this Amazon EFS access point.
|
AwsEfsAccessPointRootDirectoryCreationInfoDetails |
Provides information about the settings that Amazon EFS uses to create the root directory when a client connects to
an access point.
|
AwsEfsAccessPointRootDirectoryDetails |
Provides information about the directory on the Amazon EFS file system that the access point exposes as the root
directory to NFS clients using the access point.
|
AwsEksClusterDetails |
Provides details about an Amazon EKS cluster.
|
AwsEksClusterLoggingClusterLoggingDetails |
Details for a cluster logging configuration.
|
AwsEksClusterLoggingDetails |
The logging configuration for an Amazon EKS cluster.
|
AwsEksClusterResourcesVpcConfigDetails |
Information about the VPC configuration used by the cluster control plane.
|
AwsElasticBeanstalkEnvironmentDetails |
Contains details about an Elastic Beanstalk environment.
|
AwsElasticBeanstalkEnvironmentEnvironmentLink |
Contains information about a link to another environment that is in the same group.
|
AwsElasticBeanstalkEnvironmentOptionSetting |
A configuration option setting for the environment.
|
AwsElasticBeanstalkEnvironmentTier |
Contains information about the tier of the environment.
|
AwsElasticsearchDomainDetails |
Information about an Elasticsearch domain.
|
AwsElasticsearchDomainDomainEndpointOptions |
Additional options for the domain endpoint, such as whether to require HTTPS for all traffic.
|
AwsElasticsearchDomainElasticsearchClusterConfigDetails |
details about the configuration of an OpenSearch cluster.
|
AwsElasticsearchDomainElasticsearchClusterConfigZoneAwarenessConfigDetails |
Configuration options for zone awareness.
|
AwsElasticsearchDomainEncryptionAtRestOptions |
Details about the configuration for encryption at rest.
|
AwsElasticsearchDomainLogPublishingOptions |
configures the CloudWatch Logs to publish for the Elasticsearch domain.
|
AwsElasticsearchDomainLogPublishingOptionsLogConfig |
The log configuration.
|
AwsElasticsearchDomainNodeToNodeEncryptionOptions |
Details about the configuration for node-to-node encryption.
|
AwsElasticsearchDomainServiceSoftwareOptions |
Information about the state of the domain relative to the latest service software.
|
AwsElasticsearchDomainVPCOptions |
Information that OpenSearch derives based on
VPCOptions for the domain. |
AwsElbAppCookieStickinessPolicy |
Contains information about a stickiness policy that was created using
CreateAppCookieStickinessPolicy . |
AwsElbLbCookieStickinessPolicy |
Contains information about a stickiness policy that was created using
CreateLBCookieStickinessPolicy . |
AwsElbLoadBalancerAccessLog |
Contains information about the access log configuration for the load balancer.
|
AwsElbLoadBalancerAdditionalAttribute |
Provides information about additional attributes for the load balancer.
|
AwsElbLoadBalancerAttributes |
Contains attributes for the load balancer.
|
AwsElbLoadBalancerBackendServerDescription |
Provides information about the configuration of an EC2 instance for the load balancer.
|
AwsElbLoadBalancerConnectionDraining |
Contains information about the connection draining configuration for the load balancer.
|
AwsElbLoadBalancerConnectionSettings |
Contains connection settings for the load balancer.
|
AwsElbLoadBalancerCrossZoneLoadBalancing |
Contains cross-zone load balancing settings for the load balancer.
|
AwsElbLoadBalancerDetails |
Contains details about a Classic Load Balancer.
|
AwsElbLoadBalancerHealthCheck |
Contains information about the health checks that are conducted on the load balancer.
|
AwsElbLoadBalancerInstance |
Provides information about an EC2 instance for a load balancer.
|
AwsElbLoadBalancerListener |
Information about a load balancer listener.
|
AwsElbLoadBalancerListenerDescription |
Lists the policies that are enabled for a load balancer listener.
|
AwsElbLoadBalancerPolicies |
Contains information about the policies for a load balancer.
|
AwsElbLoadBalancerSourceSecurityGroup |
Contains information about the security group for the load balancer.
|
AwsElbv2LoadBalancerAttribute |
A load balancer attribute.
|
AwsElbv2LoadBalancerDetails |
Information about a load balancer.
|
AwsEventSchemasRegistryDetails |
A schema defines the structure of events that are sent to Amazon EventBridge.
|
AwsGuardDutyDetectorDataSourcesCloudTrailDetails |
An object that contains information on the status of CloudTrail as a data source for the detector.
|
AwsGuardDutyDetectorDataSourcesDetails |
Describes which data sources are activated for the detector.
|
AwsGuardDutyDetectorDataSourcesDnsLogsDetails |
An object that contains information on the status of DNS logs as a data source for the detector.
|
AwsGuardDutyDetectorDataSourcesFlowLogsDetails |
An object that contains information on the status of VPC Flow Logs as a data source for the detector.
|
AwsGuardDutyDetectorDataSourcesKubernetesAuditLogsDetails |
An object that contains information on the status of Kubernetes audit logs as a data source for the detector.
|
AwsGuardDutyDetectorDataSourcesKubernetesDetails |
An object that contains information on the status of Kubernetes data sources for the detector.
|
AwsGuardDutyDetectorDataSourcesMalwareProtectionDetails |
An object that contains information on the status of Malware Protection as a data source for the detector.
|
AwsGuardDutyDetectorDataSourcesMalwareProtectionScanEc2InstanceWithFindingsDetails |
Describes the configuration of Malware Protection for EC2 instances with findings.
|
AwsGuardDutyDetectorDataSourcesMalwareProtectionScanEc2InstanceWithFindingsEbsVolumesDetails |
Describes the configuration of scanning EBS volumes (Malware Protection) as a data source.
|
AwsGuardDutyDetectorDataSourcesS3LogsDetails |
An object that contains information on the status of S3 data event logs as a data source for the detector.
|
AwsGuardDutyDetectorDetails |
Provides details about an Amazon GuardDuty detector.
|
AwsGuardDutyDetectorFeaturesDetails |
Describes which features are activated for the detector.
|
AwsIamAccessKeyDetails |
IAM access key details related to a finding.
|
AwsIamAccessKeySessionContext |
Provides information about the session that the key was used for.
|
AwsIamAccessKeySessionContextAttributes |
Attributes of the session that the key was used for.
|
AwsIamAccessKeySessionContextSessionIssuer |
Information about the entity that created the session.
|
AwsIamAttachedManagedPolicy |
A managed policy that is attached to an IAM principal.
|
AwsIamGroupDetails |
Contains details about an IAM group.
|
AwsIamGroupPolicy |
A managed policy that is attached to the IAM group.
|
AwsIamInstanceProfile |
Information about an instance profile.
|
AwsIamInstanceProfileRole |
Information about a role associated with an instance profile.
|
AwsIamPermissionsBoundary |
Information about the policy used to set the permissions boundary for an IAM principal.
|
AwsIamPolicyDetails |
Represents an IAM permissions policy.
|
AwsIamPolicyVersion |
A version of an IAM policy.
|
AwsIamRoleDetails |
Contains information about an IAM role, including all of the role's policies.
|
AwsIamRolePolicy |
An inline policy that is embedded in the role.
|
AwsIamUserDetails |
Information about an IAM user.
|
AwsIamUserPolicy |
Information about an inline policy that is embedded in the user.
|
AwsKinesisStreamDetails |
Provides information about an Amazon Kinesis data stream.
|
AwsKinesisStreamStreamEncryptionDetails |
Provides information about stream encryption.
|
AwsKmsKeyDetails |
Contains metadata about an KMS key.
|
AwsLambdaFunctionCode |
The code for the Lambda function.
|
AwsLambdaFunctionDeadLetterConfig |
The dead-letter queue for failed asynchronous invocations.
|
AwsLambdaFunctionDetails |
Details about an Lambda function's configuration.
|
AwsLambdaFunctionEnvironment |
A function's environment variable settings.
|
AwsLambdaFunctionEnvironmentError |
Error messages for environment variables that could not be applied.
|
AwsLambdaFunctionLayer |
An Lambda layer.
|
AwsLambdaFunctionTracingConfig |
The function's X-Ray tracing configuration.
|
AwsLambdaFunctionVpcConfig |
The VPC security groups and subnets that are attached to a Lambda function.
|
AwsLambdaLayerVersionDetails |
Details about a Lambda layer version.
|
AwsMountPoint |
Details for a volume mount point that's used in a container definition.
|
AwsNetworkFirewallFirewallDetails |
Details about an Network Firewall firewall.
|
AwsNetworkFirewallFirewallPolicyDetails |
Details about a firewall policy.
|
AwsNetworkFirewallFirewallSubnetMappingsDetails |
A public subnet that Network Firewall uses for the firewall.
|
AwsNetworkFirewallRuleGroupDetails |
Details about an Network Firewall rule group.
|
AwsOpenSearchServiceDomainAdvancedSecurityOptionsDetails |
Provides information about domain access control options.
|
AwsOpenSearchServiceDomainClusterConfigDetails |
Details about the configuration of an OpenSearch cluster.
|
AwsOpenSearchServiceDomainClusterConfigZoneAwarenessConfigDetails |
Configuration options for zone awareness.
|
AwsOpenSearchServiceDomainDetails |
Information about an Amazon OpenSearch Service domain.
|
AwsOpenSearchServiceDomainDomainEndpointOptionsDetails |
Information about additional options for the domain endpoint.
|
AwsOpenSearchServiceDomainEncryptionAtRestOptionsDetails |
Details about the configuration for encryption at rest for the OpenSearch domain.
|
AwsOpenSearchServiceDomainLogPublishingOption |
Configuration details for a log publishing option.
|
AwsOpenSearchServiceDomainLogPublishingOptionsDetails |
Configures the CloudWatch Logs to publish for the OpenSearch domain.
|
AwsOpenSearchServiceDomainMasterUserOptionsDetails |
Specifies information about the master user of the domain.
|
AwsOpenSearchServiceDomainNodeToNodeEncryptionOptionsDetails |
Provides details about the configuration for node-to-node encryption.
|
AwsOpenSearchServiceDomainServiceSoftwareOptionsDetails |
Provides information about the state of the domain relative to the latest service software.
|
AwsOpenSearchServiceDomainVpcOptionsDetails |
Contains information that OpenSearch Service derives based on the
VPCOptions for the domain. |
AwsRdsDbClusterAssociatedRole |
An IAM role that is associated with the Amazon RDS DB cluster.
|
AwsRdsDbClusterDetails |
Information about an Amazon RDS DB cluster.
|
AwsRdsDbClusterMember |
Information about an instance in the DB cluster.
|
AwsRdsDbClusterOptionGroupMembership |
Information about an option group membership for a DB cluster.
|
AwsRdsDbClusterSnapshotDetails |
Information about an Amazon RDS DB cluster snapshot.
|
AwsRdsDbDomainMembership |
Information about an Active Directory domain membership record associated with the DB instance.
|
AwsRdsDbInstanceAssociatedRole |
An IAM role associated with the DB instance.
|
AwsRdsDbInstanceDetails |
Contains the details of an Amazon RDS DB instance.
|
AwsRdsDbInstanceEndpoint |
Specifies the connection endpoint.
|
AwsRdsDbInstanceVpcSecurityGroup |
A VPC security groups that the DB instance belongs to.
|
AwsRdsDbOptionGroupMembership |
An option group membership.
|
AwsRdsDbParameterGroup |
Provides information about a parameter group for a DB instance.
|
AwsRdsDbPendingModifiedValues |
Changes to a DB instance that are currently pending.
|
AwsRdsDbProcessorFeature |
A processor feature.
|
AwsRdsDbSecurityGroupDetails |
Provides information about an Amazon RDS DB security group.
|
AwsRdsDbSecurityGroupEc2SecurityGroup |
EC2 security group information for an RDS DB security group.
|
AwsRdsDbSecurityGroupIpRange |
IP range information for an RDS DB security group.
|
AwsRdsDbSnapshotDetails |
Provides details about an Amazon RDS DB cluster snapshot.
|
AwsRdsDbStatusInfo |
Information about the status of a read replica.
|
AwsRdsDbSubnetGroup |
Information about the subnet group for the database instance.
|
AwsRdsDbSubnetGroupSubnet |
Information about a subnet in a subnet group.
|
AwsRdsDbSubnetGroupSubnetAvailabilityZone |
An Availability Zone for a subnet in a subnet group.
|
AwsRdsEventSubscriptionDetails |
Details about an Amazon RDS event notification subscription.
|
AwsRdsPendingCloudWatchLogsExports |
Identifies the log types to enable and disable.
|
AwsRedshiftClusterClusterNode |
A node in an Amazon Redshift cluster.
|
AwsRedshiftClusterClusterParameterGroup |
A cluster parameter group that is associated with an Amazon Redshift cluster.
|
AwsRedshiftClusterClusterParameterStatus |
The status of a parameter in a cluster parameter group for an Amazon Redshift cluster.
|
AwsRedshiftClusterClusterSecurityGroup |
A security group that is associated with the cluster.
|
AwsRedshiftClusterClusterSnapshotCopyStatus |
You can configure Amazon Redshift to copy snapshots for a cluster to another Amazon Web Services Region.
|
AwsRedshiftClusterDeferredMaintenanceWindow |
A time windows during which maintenance was deferred for an Amazon Redshift cluster.
|
AwsRedshiftClusterDetails |
Details about an Amazon Redshift cluster.
|
AwsRedshiftClusterElasticIpStatus |
The status of the elastic IP (EIP) address for an Amazon Redshift cluster.
|
AwsRedshiftClusterEndpoint |
The connection endpoint for an Amazon Redshift cluster.
|
AwsRedshiftClusterHsmStatus |
Information about whether an Amazon Redshift cluster finished applying any hardware changes to security module (HSM)
settings that were specified in a modify cluster command.
|
AwsRedshiftClusterIamRole |
An IAM role that the cluster can use to access other Amazon Web Services services.
|
AwsRedshiftClusterLoggingStatus |
Provides information about the logging status of the cluster.
|
AwsRedshiftClusterPendingModifiedValues |
Changes to the Amazon Redshift cluster that are currently pending.
|
AwsRedshiftClusterResizeInfo |
Information about the resize operation for the cluster.
|
AwsRedshiftClusterRestoreStatus |
Information about the status of a cluster restore action.
|
AwsRedshiftClusterVpcSecurityGroup |
A VPC security group that the cluster belongs to, if the cluster is in a VPC.
|
AwsS3AccountPublicAccessBlockDetails |
provides information about the Amazon S3 Public Access Block configuration for accounts.
|
AwsS3BucketBucketLifecycleConfigurationDetails |
The lifecycle configuration for the objects in the S3 bucket.
|
AwsS3BucketBucketLifecycleConfigurationRulesAbortIncompleteMultipartUploadDetails |
Information about what Amazon S3 does when a multipart upload is incomplete.
|
AwsS3BucketBucketLifecycleConfigurationRulesDetails |
Configuration for a lifecycle rule.
|
AwsS3BucketBucketLifecycleConfigurationRulesFilterDetails |
Identifies the objects that a rule applies to.
|
AwsS3BucketBucketLifecycleConfigurationRulesFilterPredicateDetails |
The configuration for the filter.
|
AwsS3BucketBucketLifecycleConfigurationRulesFilterPredicateOperandsDetails |
A value to use for the filter.
|
AwsS3BucketBucketLifecycleConfigurationRulesFilterPredicateOperandsTagDetails |
A tag that is assigned to matching objects.
|
AwsS3BucketBucketLifecycleConfigurationRulesFilterPredicateTagDetails |
A tag filter.
|
AwsS3BucketBucketLifecycleConfigurationRulesNoncurrentVersionTransitionsDetails |
A transition rule that describes when noncurrent objects transition to a specified storage class.
|
AwsS3BucketBucketLifecycleConfigurationRulesTransitionsDetails |
A rule for when objects transition to specific storage classes.
|
AwsS3BucketBucketVersioningConfiguration |
Describes the versioning state of an S3 bucket.
|
AwsS3BucketDetails |
The details of an Amazon S3 bucket.
|
AwsS3BucketLoggingConfiguration |
Information about logging for the S3 bucket
|
AwsS3BucketNotificationConfiguration |
The notification configuration for the S3 bucket.
|
AwsS3BucketNotificationConfigurationDetail |
Details for an S3 bucket notification configuration.
|
AwsS3BucketNotificationConfigurationFilter |
Filtering information for the notifications.
|
AwsS3BucketNotificationConfigurationS3KeyFilter |
Details for an Amazon S3 filter.
|
AwsS3BucketNotificationConfigurationS3KeyFilterRule |
Details for a filter rule.
|
AwsS3BucketObjectLockConfiguration |
The container element for S3 Object Lock configuration parameters.
|
AwsS3BucketObjectLockConfigurationRuleDefaultRetentionDetails |
The default S3 Object Lock retention mode and period that you want to apply to new objects placed in the specified
Amazon S3 bucket.
|
AwsS3BucketObjectLockConfigurationRuleDetails |
Specifies the S3 Object Lock rule for the specified object.
|
AwsS3BucketServerSideEncryptionByDefault |
Specifies the default server-side encryption to apply to new objects in the bucket.
|
AwsS3BucketServerSideEncryptionConfiguration |
The encryption configuration for the S3 bucket.
|
AwsS3BucketServerSideEncryptionRule |
An encryption rule to apply to the S3 bucket.
|
AwsS3BucketWebsiteConfiguration |
Website parameters for the S3 bucket.
|
AwsS3BucketWebsiteConfigurationRedirectTo |
The redirect behavior for requests to the website.
|
AwsS3BucketWebsiteConfigurationRoutingRule |
A rule for redirecting requests to the website.
|
AwsS3BucketWebsiteConfigurationRoutingRuleCondition |
The condition that must be met in order to apply the routing rule.
|
AwsS3BucketWebsiteConfigurationRoutingRuleRedirect |
The rules to redirect the request if the condition in
Condition is met. |
AwsS3ObjectDetails |
Details about an Amazon S3 object.
|
AwsSageMakerNotebookInstanceDetails |
Provides details about an Amazon SageMaker notebook instance.
|
AwsSageMakerNotebookInstanceMetadataServiceConfigurationDetails |
Information on the instance metadata service (IMDS) configuration of the notebook instance.
|
AwsSecretsManagerSecretDetails |
Details about an Secrets Manager secret.
|
AwsSecretsManagerSecretRotationRules |
Defines the rotation schedule for the secret.
|
AwsSecurityFinding |
Provides a consistent format for Security Hub findings.
|
AwsSecurityFindingFilters |
A collection of attributes that are applied to all active Security Hub-aggregated findings and that result in a
subset of findings that are included in this insight.
|
AwsSecurityFindingIdentifier |
Identifies which finding to get the finding history for.
|
AwsSnsTopicDetails |
Provides information about an Amazon SNS topic to which notifications can be published.
|
AwsSnsTopicSubscription |
A wrapper type for the attributes of an Amazon SNS subscription.
|
AwsSqsQueueDetails |
Data about a queue.
|
AwsSsmComplianceSummary |
Provides the details about the compliance status for a patch.
|
AwsSsmPatch |
Provides details about the compliance for a patch.
|
AwsSsmPatchComplianceDetails |
Provides information about the state of a patch on an instance based on the patch baseline that was used to patch the
instance.
|
AwsStepFunctionStateMachineDetails |
Provides details about an Step Functions state machine, which is a workflow consisting of a series of event- driven
steps.
|
AwsStepFunctionStateMachineLoggingConfigurationDestinationsCloudWatchLogsLogGroupDetails |
An object describing a CloudWatch log group.
|
AwsStepFunctionStateMachineLoggingConfigurationDestinationsDetails |
An array of objects that describes where your execution history events will be logged.
|
AwsStepFunctionStateMachineLoggingConfigurationDetails |
The
LoggingConfiguration data type is used to set CloudWatch Logs options. |
AwsStepFunctionStateMachineTracingConfigurationDetails |
Specifies whether X-Ray tracing is enabled.
|
AwsWafRateBasedRuleDetails |
Details about a rate-based rule for global resources.
|
AwsWafRateBasedRuleMatchPredicate |
A match predicate.
|
AwsWafRegionalRateBasedRuleDetails |
contains details about a rate-based rule for Regional resources.
|
AwsWafRegionalRateBasedRuleMatchPredicate |
Details for a match predicate.
|
AwsWafRegionalRuleDetails |
Provides information about an WAF Regional rule.
|
AwsWafRegionalRuleGroupDetails |
Provides information about an WAF Regional rule group.
|
AwsWafRegionalRuleGroupRulesActionDetails |
Describes the action that WAF should take on a web request when it matches the criteria defined in the rule.
|
AwsWafRegionalRuleGroupRulesDetails |
Provides information about the rules attached to a rule group
|
AwsWafRegionalRulePredicateListDetails |
Provides details about the
ByteMatchSet , IPSet , SqlInjectionMatchSet ,
XssMatchSet , RegexMatchSet , GeoMatchSet , and SizeConstraintSet
objects that you want to add to a rule and, for each object, indicates whether you want to negate the settings. |
AwsWafRegionalWebAclDetails |
Provides information about the web access control list (web ACL).
|
AwsWafRegionalWebAclRulesListActionDetails |
The action that WAF takes when a web request matches all conditions in the rule, such as allow, block, or count the
request.
|
AwsWafRegionalWebAclRulesListDetails |
A combination of
ByteMatchSet , IPSet , and/or SqlInjectionMatchSet objects that
identify the web requests that you want to allow, block, or count. |
AwsWafRegionalWebAclRulesListOverrideActionDetails |
Provides details about the action to use in the place of the action that results from the rule group evaluation.
|
AwsWafRuleDetails |
Provides information about a WAF rule.
|
AwsWafRuleGroupDetails |
Provides information about an WAF rule group.
|
AwsWafRuleGroupRulesActionDetails |
Provides information about what action WAF should take on a web request when it matches the criteria defined in the
rule.
|
AwsWafRuleGroupRulesDetails |
Provides information about the rules attached to the rule group.
|
AwsWafRulePredicateListDetails |
Provides details about the
ByteMatchSet , IPSet , SqlInjectionMatchSet ,
XssMatchSet , RegexMatchSet , GeoMatchSet , and SizeConstraintSet
objects that you want to add to a rule and, for each object, indicates whether you want to negate the settings. |
AwsWafv2ActionAllowDetails |
Specifies that WAF should allow the request and optionally defines additional custom handling for the request.
|
AwsWafv2ActionBlockDetails |
Specifies that WAF should block the request and optionally defines additional custom handling for the response to the
web request.
|
AwsWafv2CustomHttpHeader |
A custom header for custom request and response handling.
|
AwsWafv2CustomRequestHandlingDetails |
Custom request handling behavior that inserts custom headers into a web request.
|
AwsWafv2CustomResponseDetails |
A custom response to send to the client.
|
AwsWafv2RuleGroupDetails |
Details about an WAFv2 rule group.
|
AwsWafv2RulesActionCaptchaDetails |
Specifies that WAF should run a CAPTCHA check against the request.
|
AwsWafv2RulesActionCountDetails |
Specifies that WAF should count the request.
|
AwsWafv2RulesActionDetails |
The action that WAF should take on a web request when it matches a rule's statement.
|
AwsWafv2RulesDetails |
Provides details about rules in a rule group.
|
AwsWafv2VisibilityConfigDetails |
Defines and enables Amazon CloudWatch metrics and web request sample collection.
|
AwsWafv2WebAclActionDetails |
Specifies the action that Amazon CloudFront or WAF takes when a web request matches the conditions in the rule.
|
AwsWafv2WebAclCaptchaConfigDetails |
Specifies how WAF should handle CAPTCHA evaluations for rules that don't have their own
CaptchaConfig
settings. |
AwsWafv2WebAclCaptchaConfigImmunityTimePropertyDetails |
Used for CAPTCHA and challenge token settings.
|
AwsWafv2WebAclDetails |
Details about an WAFv2 web Access Control List (ACL).
|
AwsWafWebAclDetails |
Provides information about an WAF web access control list (web ACL).
|
AwsWafWebAclRule |
Details for a rule in an WAF web ACL.
|
AwsXrayEncryptionConfigDetails |
Information about the encryption configuration for X-Ray.
|
BatchDisableStandardsRequest | |
BatchDisableStandardsResult | |
BatchEnableStandardsRequest | |
BatchEnableStandardsResult | |
BatchGetSecurityControlsRequest | |
BatchGetSecurityControlsResult | |
BatchGetStandardsControlAssociationsRequest | |
BatchGetStandardsControlAssociationsResult | |
BatchImportFindingsRequest | |
BatchImportFindingsResult | |
BatchUpdateFindingsRequest | |
BatchUpdateFindingsResult | |
BatchUpdateFindingsUnprocessedFinding |
A finding from a
BatchUpdateFindings request that Security Hub was unable to update. |
BatchUpdateStandardsControlAssociationsRequest | |
BatchUpdateStandardsControlAssociationsResult | |
BooleanFilter |
Boolean filter for querying findings.
|
Cell |
An occurrence of sensitive data detected in a Microsoft Excel workbook, comma-separated value (CSV) file, or
tab-separated value (TSV) file.
|
CidrBlockAssociation |
An IPv4 CIDR block association.
|
City |
Information about a city.
|
ClassificationResult |
Details about the sensitive data that was detected on the resource.
|
ClassificationStatus |
Provides details about the current status of the sensitive data detection.
|
Compliance |
Contains finding details that are specific to control-based findings.
|
ContainerDetails |
Container details related to a finding.
|
Country |
Information about a country.
|
CreateActionTargetRequest | |
CreateActionTargetResult | |
CreateFindingAggregatorRequest | |
CreateFindingAggregatorResult | |
CreateInsightRequest | |
CreateInsightResult | |
CreateMembersRequest | |
CreateMembersResult | |
CustomDataIdentifiersDetections |
The list of detected instances of sensitive data.
|
CustomDataIdentifiersResult |
Contains an instance of sensitive data that was detected by a customer-defined identifier.
|
Cvss |
CVSS scores from the advisory related to the vulnerability.
|
DataClassificationDetails |
Provides details about sensitive data that was detected on a resource.
|
DateFilter |
A date filter for querying findings.
|
DateRange |
A date range for the date filter.
|
DeclineInvitationsRequest | |
DeclineInvitationsResult | |
DeleteActionTargetRequest | |
DeleteActionTargetResult | |
DeleteFindingAggregatorRequest | |
DeleteFindingAggregatorResult | |
DeleteInsightRequest | |
DeleteInsightResult | |
DeleteInvitationsRequest | |
DeleteInvitationsResult | |
DeleteMembersRequest | |
DeleteMembersResult | |
DescribeActionTargetsRequest | |
DescribeActionTargetsResult | |
DescribeHubRequest | |
DescribeHubResult | |
DescribeOrganizationConfigurationRequest | |
DescribeOrganizationConfigurationResult | |
DescribeProductsRequest | |
DescribeProductsResult | |
DescribeStandardsControlsRequest | |
DescribeStandardsControlsResult | |
DescribeStandardsRequest | |
DescribeStandardsResult | |
DisableImportFindingsForProductRequest | |
DisableImportFindingsForProductResult | |
DisableOrganizationAdminAccountRequest | |
DisableOrganizationAdminAccountResult | |
DisableSecurityHubRequest | |
DisableSecurityHubResult | |
DisassociateFromAdministratorAccountRequest | |
DisassociateFromAdministratorAccountResult | |
DisassociateFromMasterAccountRequest | |
DisassociateFromMasterAccountResult | |
DisassociateMembersRequest | |
DisassociateMembersResult | |
DnsRequestAction |
Provided if
ActionType is DNS_REQUEST . |
EnableImportFindingsForProductRequest | |
EnableImportFindingsForProductResult | |
EnableOrganizationAdminAccountRequest | |
EnableOrganizationAdminAccountResult | |
EnableSecurityHubRequest | |
EnableSecurityHubResult | |
FilePaths |
Provides information about the file paths that were affected by the threat.
|
FindingAggregator |
A finding aggregator.
|
FindingHistoryRecord |
A list of events that changed the specified finding during the specified time period.
|
FindingHistoryUpdate |
An array of objects that provides details about a change to a finding, including the Amazon Web Services Security
Finding Format (ASFF) field that changed, the value of the field before the change, and the value of the field after
the change.
|
FindingHistoryUpdateSource |
Identifies the source of the finding change event.
|
FindingProviderFields |
In a
BatchImportFindings request, finding providers use FindingProviderFields to provide
and update values for confidence, criticality, related findings, severity, and types. |
FindingProviderSeverity |
The severity assigned to the finding by the finding provider.
|
FirewallPolicyDetails |
Defines the behavior of the firewall.
|
FirewallPolicyStatefulRuleGroupReferencesDetails |
A stateful rule group that is used by the firewall policy.
|
FirewallPolicyStatelessCustomActionsDetails |
A custom action that can be used for stateless packet handling.
|
FirewallPolicyStatelessRuleGroupReferencesDetails |
A stateless rule group that is used by the firewall policy.
|
GeoLocation |
Provides the latitude and longitude coordinates of a location.
|
GetAdministratorAccountRequest | |
GetAdministratorAccountResult | |
GetEnabledStandardsRequest | |
GetEnabledStandardsResult | |
GetFindingAggregatorRequest | |
GetFindingAggregatorResult | |
GetFindingHistoryRequest | |
GetFindingHistoryResult | |
GetFindingsRequest | |
GetFindingsResult | |
GetInsightResultsRequest | |
GetInsightResultsResult | |
GetInsightsRequest | |
GetInsightsResult | |
GetInvitationsCountRequest | |
GetInvitationsCountResult | |
GetMasterAccountRequest | |
GetMasterAccountResult | |
GetMembersRequest | |
GetMembersResult | |
IcmpTypeCode |
An Internet Control Message Protocol (ICMP) type and code.
|
ImportFindingsError |
The list of the findings that cannot be imported.
|
Insight |
Contains information about a Security Hub insight.
|
InsightResults |
The insight results returned by the
GetInsightResults operation. |
InsightResultValue |
The insight result values returned by the
GetInsightResults operation. |
Invitation |
Details about an invitation.
|
InviteMembersRequest | |
InviteMembersResult | |
IpFilter |
The IP filter for querying findings.
|
IpOrganizationDetails |
Provides information about an internet provider.
|
Ipv6CidrBlockAssociation |
An IPV6 CIDR block association.
|
KeywordFilter |
A keyword filter for querying findings.
|
ListEnabledProductsForImportRequest | |
ListEnabledProductsForImportResult | |
ListFindingAggregatorsRequest | |
ListFindingAggregatorsResult | |
ListInvitationsRequest | |
ListInvitationsResult | |
ListMembersRequest | |
ListMembersResult | |
ListOrganizationAdminAccountsRequest | |
ListOrganizationAdminAccountsResult | |
ListSecurityControlDefinitionsRequest | |
ListSecurityControlDefinitionsResult | |
ListStandardsControlAssociationsRequest | |
ListStandardsControlAssociationsResult | |
ListTagsForResourceRequest | |
ListTagsForResourceResult | |
LoadBalancerState |
Information about the state of the load balancer.
|
Malware |
A list of malware related to a finding.
|
MapFilter |
A map filter for querying findings.
|
Member |
The details about a member account.
|
Network |
The details of network-related information about a finding.
|
NetworkConnectionAction |
Provided if
ActionType is NETWORK_CONNECTION . |
NetworkHeader |
Details about a network path component that occurs before or after the current component.
|
NetworkPathComponent |
Information about a network path component.
|
NetworkPathComponentDetails |
Information about the destination of the next component in the network path.
|
Note |
A user-defined note added to a finding.
|
NoteUpdate |
The updated note.
|
NumberFilter |
A number filter for querying findings.
|
Occurrences |
The detected occurrences of sensitive data.
|
Page |
An occurrence of sensitive data in an Adobe Portable Document Format (PDF) file.
|
PatchSummary |
Provides an overview of the patch compliance status for an instance against a selected compliance standard.
|
PortProbeAction |
Provided if
ActionType is PORT_PROBE . |
PortProbeDetail |
A port scan that was part of the port probe.
|
PortRange |
A range of ports.
|
PortRangeFromTo |
A range of ports.
|
ProcessDetails |
The details of process-related information about a finding.
|
Product |
Contains details about a product.
|
PropagatingVgwSetDetails |
Describes a virtual private gateway propagating route.
|
Range |
Identifies where the sensitive data begins and ends.
|
Recommendation |
A recommendation on how to remediate the issue identified in a finding.
|
Record |
An occurrence of sensitive data in an Apache Avro object container or an Apache Parquet file.
|
RelatedFinding |
Details about a related finding.
|
Remediation |
Details about the remediation steps for a finding.
|
Resource |
A resource related to a finding.
|
ResourceDetails |
Additional details about a resource related to a finding.
|
Result |
Details about the account that was not processed.
|
RouteSetDetails |
Provides details about the routes in the route table.
|
RuleGroupDetails |
Details about the rule group.
|
RuleGroupSource |
The rules and actions for the rule group.
|
RuleGroupSourceCustomActionsDetails |
A custom action definition.
|
RuleGroupSourceListDetails |
Stateful inspection criteria for a domain list rule group.
|
RuleGroupSourceStatefulRulesDetails |
A Suricata rule specification.
|
RuleGroupSourceStatefulRulesHeaderDetails |
The inspection criteria for a stateful rule.
|
RuleGroupSourceStatefulRulesOptionsDetails |
A rule option for a stateful rule.
|
RuleGroupSourceStatelessRuleDefinition |
The definition of the stateless rule.
|
RuleGroupSourceStatelessRuleMatchAttributes |
Criteria for the stateless rule.
|
RuleGroupSourceStatelessRuleMatchAttributesDestinationPorts |
A port range to specify the destination ports to inspect for.
|
RuleGroupSourceStatelessRuleMatchAttributesDestinations |
A destination IP address or range.
|
RuleGroupSourceStatelessRuleMatchAttributesSourcePorts |
A port range to specify the source ports to inspect for.
|
RuleGroupSourceStatelessRuleMatchAttributesSources |
A source IP addresses and address range to inspect for.
|
RuleGroupSourceStatelessRuleMatchAttributesTcpFlags |
A set of TCP flags and masks to inspect for.
|
RuleGroupSourceStatelessRulesAndCustomActionsDetails |
Stateless rules and custom actions for a stateless rule group.
|
RuleGroupSourceStatelessRulesDetails |
A stateless rule in the rule group.
|
RuleGroupVariables |
Additional settings to use in the specified rules.
|
RuleGroupVariablesIpSetsDetails |
A list of IP addresses and address ranges, in CIDR notation.
|
RuleGroupVariablesPortSetsDetails |
A list of port ranges.
|
SecurityControl |
A security control in Security Hub describes a security best practice related to a specific resource.
|
SecurityControlDefinition |
Provides metadata for a security control, including its unique standard-agnostic identifier, title, description,
severity, availability in Amazon Web Services Regions, and a link to remediation steps.
|
SensitiveDataDetections |
The list of detected instances of sensitive data.
|
SensitiveDataResult |
Contains a detected instance of sensitive data that are based on built-in identifiers.
|
Severity |
The severity of the finding.
|
SeverityUpdate |
Updates to the severity information for a finding.
|
SoftwarePackage |
Information about a software package.
|
SortCriterion |
A collection of finding attributes used to sort findings.
|
Standard |
Provides information about a specific security standard.
|
StandardsControl |
Details for an individual security standard control.
|
StandardsControlAssociationDetail |
Provides details about a control's enablement status in a specified standard.
|
StandardsControlAssociationId |
An array with one or more objects that includes a security control (identified with
SecurityControlId ,
SecurityControlArn , or a mix of both parameters) and the Amazon Resource Name (ARN) of a standard. |
StandardsControlAssociationSummary |
An array that provides the enablement status and other details for each control that applies to each enabled
standard.
|
StandardsControlAssociationUpdate |
An array of requested updates to the enablement status of controls in specified standards.
|
StandardsManagedBy |
Provides details about the management of a security standard.
|
StandardsStatusReason |
The reason for the current status of a standard subscription.
|
StandardsSubscription |
A resource that represents your subscription to a supported standard.
|
StandardsSubscriptionRequest |
The standard that you want to enable.
|
StatelessCustomActionDefinition |
The definition of a custom action that can be used for stateless packet handling.
|
StatelessCustomPublishMetricAction |
Information about metrics to publish to CloudWatch.
|
StatelessCustomPublishMetricActionDimension |
Defines a CloudWatch dimension value to publish.
|
StatusReason |
Provides additional context for the value of
Compliance.Status . |
StringFilter |
A string filter for querying findings.
|
TagResourceRequest | |
TagResourceResult | |
Threat |
Provides information about the threat detected in a security finding and the file paths that were affected by the
threat.
|
ThreatIntelIndicator |
Details about the threat intelligence related to a finding.
|
UnprocessedSecurityControl |
Provides details about a security control for which a response couldn't be returned.
|
UnprocessedStandardsControlAssociation |
Provides details about which control's enablement status couldn't be retrieved in a specified standard when calling
BatchUpdateStandardsControlAssociations.
|
UnprocessedStandardsControlAssociationUpdate |
Provides details about which control's enablement status could not be updated in a specified standard when calling
the BatchUpdateStandardsControlAssociations API.
|
UntagResourceRequest | |
UntagResourceResult | |
UpdateActionTargetRequest | |
UpdateActionTargetResult | |
UpdateFindingAggregatorRequest | |
UpdateFindingAggregatorResult | |
UpdateFindingsRequest | |
UpdateFindingsResult | |
UpdateInsightRequest | |
UpdateInsightResult | |
UpdateOrganizationConfigurationRequest | |
UpdateOrganizationConfigurationResult | |
UpdateSecurityHubConfigurationRequest | |
UpdateSecurityHubConfigurationResult | |
UpdateStandardsControlRequest | |
UpdateStandardsControlResult | |
VolumeMount |
Describes the mounting of a volume in a container.
|
VpcInfoCidrBlockSetDetails |
Provides details about the IPv4 CIDR blocks for the VPC.
|
VpcInfoIpv6CidrBlockSetDetails |
Provides details about the IPv6 CIDR blocks for the VPC.
|
VpcInfoPeeringOptionsDetails |
Provides information about the VPC peering connection options for the accepter or requester VPC.
|
Vulnerability |
A vulnerability associated with a finding.
|
VulnerabilityVendor |
A vendor that generates a vulnerability report.
|
WafAction |
Details about the action that CloudFront or WAF takes when a web request matches the conditions in the rule.
|
WafExcludedRule |
Details about a rule to exclude from a rule group.
|
WafOverrideAction |
Details about an override action for a rule.
|
Workflow |
Provides information about the status of the investigation into a finding.
|
WorkflowUpdate |
Used to update information about the investigation into the finding.
|
Exception | Description |
---|---|
AccessDeniedException |
You don't have permission to perform the action specified in the request.
|
AWSSecurityHubException |
Base exception for all service exceptions thrown by AWS SecurityHub
|
InternalException |
Internal server error.
|
InvalidAccessException |
The account doesn't have permission to perform this action.
|
InvalidInputException |
The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
|
LimitExceededException |
The request was rejected because it attempted to create resources beyond the current Amazon Web Services account or
throttling limits.
|
ResourceConflictException |
The resource specified in the request conflicts with an existing resource.
|
ResourceNotFoundException |
The request was rejected because we can't find the specified resource.
|