Package software.amazon.awscdk.services.securityhub

Interface CfnInsight.AwsSecurityFindingFiltersProperty

All Superinterfaces:

software.amazon.jsii.JsiiSerializable

All Known Implementing Classes:

CfnInsight.AwsSecurityFindingFiltersProperty.Jsii$Proxy

Enclosing class:

CfnInsight

@Stability(Stable)
public static interface CfnInsight.AwsSecurityFindingFiltersProperty
extends software.amazon.jsii.JsiiSerializable

A collection of filters that are applied to all active findings aggregated by AWS Security Hub .

You can filter by up to ten finding attributes. For each attribute, you can provide up to 20 filter values.

Example:

 // The code below shows an example of how to instantiate this type.
 // The values are placeholders you should change.
 import software.amazon.awscdk.services.securityhub.*;
 AwsSecurityFindingFiltersProperty awsSecurityFindingFiltersProperty = AwsSecurityFindingFiltersProperty.builder()
         .awsAccountId(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .awsAccountName(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .companyName(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .complianceAssociatedStandardsId(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .complianceSecurityControlId(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .complianceSecurityControlParametersName(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .complianceSecurityControlParametersValue(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .complianceStatus(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .confidence(List.of(NumberFilterProperty.builder()
                 .eq(123)
                 .gte(123)
                 .lte(123)
                 .build()))
         .createdAt(List.of(DateFilterProperty.builder()
                 .dateRange(DateRangeProperty.builder()
                         .unit("unit")
                         .value(123)
                         .build())
                 .end("end")
                 .start("start")
                 .build()))
         .criticality(List.of(NumberFilterProperty.builder()
                 .eq(123)
                 .gte(123)
                 .lte(123)
                 .build()))
         .description(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .findingProviderFieldsConfidence(List.of(NumberFilterProperty.builder()
                 .eq(123)
                 .gte(123)
                 .lte(123)
                 .build()))
         .findingProviderFieldsCriticality(List.of(NumberFilterProperty.builder()
                 .eq(123)
                 .gte(123)
                 .lte(123)
                 .build()))
         .findingProviderFieldsRelatedFindingsId(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .findingProviderFieldsRelatedFindingsProductArn(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .findingProviderFieldsSeverityLabel(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .findingProviderFieldsSeverityOriginal(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .findingProviderFieldsTypes(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .firstObservedAt(List.of(DateFilterProperty.builder()
                 .dateRange(DateRangeProperty.builder()
                         .unit("unit")
                         .value(123)
                         .build())
                 .end("end")
                 .start("start")
                 .build()))
         .generatorId(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .id(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .keyword(List.of(KeywordFilterProperty.builder()
                 .value("value")
                 .build()))
         .lastObservedAt(List.of(DateFilterProperty.builder()
                 .dateRange(DateRangeProperty.builder()
                         .unit("unit")
                         .value(123)
                         .build())
                 .end("end")
                 .start("start")
                 .build()))
         .malwareName(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .malwarePath(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .malwareState(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .malwareType(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .networkDestinationDomain(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .networkDestinationIpV4(List.of(IpFilterProperty.builder()
                 .cidr("cidr")
                 .build()))
         .networkDestinationIpV6(List.of(IpFilterProperty.builder()
                 .cidr("cidr")
                 .build()))
         .networkDestinationPort(List.of(NumberFilterProperty.builder()
                 .eq(123)
                 .gte(123)
                 .lte(123)
                 .build()))
         .networkDirection(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .networkProtocol(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .networkSourceDomain(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .networkSourceIpV4(List.of(IpFilterProperty.builder()
                 .cidr("cidr")
                 .build()))
         .networkSourceIpV6(List.of(IpFilterProperty.builder()
                 .cidr("cidr")
                 .build()))
         .networkSourceMac(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .networkSourcePort(List.of(NumberFilterProperty.builder()
                 .eq(123)
                 .gte(123)
                 .lte(123)
                 .build()))
         .noteText(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .noteUpdatedAt(List.of(DateFilterProperty.builder()
                 .dateRange(DateRangeProperty.builder()
                         .unit("unit")
                         .value(123)
                         .build())
                 .end("end")
                 .start("start")
                 .build()))
         .noteUpdatedBy(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .processLaunchedAt(List.of(DateFilterProperty.builder()
                 .dateRange(DateRangeProperty.builder()
                         .unit("unit")
                         .value(123)
                         .build())
                 .end("end")
                 .start("start")
                 .build()))
         .processName(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .processParentPid(List.of(NumberFilterProperty.builder()
                 .eq(123)
                 .gte(123)
                 .lte(123)
                 .build()))
         .processPath(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .processPid(List.of(NumberFilterProperty.builder()
                 .eq(123)
                 .gte(123)
                 .lte(123)
                 .build()))
         .processTerminatedAt(List.of(DateFilterProperty.builder()
                 .dateRange(DateRangeProperty.builder()
                         .unit("unit")
                         .value(123)
                         .build())
                 .end("end")
                 .start("start")
                 .build()))
         .productArn(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .productFields(List.of(MapFilterProperty.builder()
                 .comparison("comparison")
                 .key("key")
                 .value("value")
                 .build()))
         .productName(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .recommendationText(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .recordState(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .region(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .relatedFindingsId(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .relatedFindingsProductArn(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .resourceApplicationArn(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .resourceApplicationName(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .resourceAwsEc2InstanceIamInstanceProfileArn(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .resourceAwsEc2InstanceImageId(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .resourceAwsEc2InstanceIpV4Addresses(List.of(IpFilterProperty.builder()
                 .cidr("cidr")
                 .build()))
         .resourceAwsEc2InstanceIpV6Addresses(List.of(IpFilterProperty.builder()
                 .cidr("cidr")
                 .build()))
         .resourceAwsEc2InstanceKeyName(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .resourceAwsEc2InstanceLaunchedAt(List.of(DateFilterProperty.builder()
                 .dateRange(DateRangeProperty.builder()
                         .unit("unit")
                         .value(123)
                         .build())
                 .end("end")
                 .start("start")
                 .build()))
         .resourceAwsEc2InstanceSubnetId(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .resourceAwsEc2InstanceType(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .resourceAwsEc2InstanceVpcId(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .resourceAwsIamAccessKeyCreatedAt(List.of(DateFilterProperty.builder()
                 .dateRange(DateRangeProperty.builder()
                         .unit("unit")
                         .value(123)
                         .build())
                 .end("end")
                 .start("start")
                 .build()))
         .resourceAwsIamAccessKeyPrincipalName(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .resourceAwsIamAccessKeyStatus(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .resourceAwsIamAccessKeyUserName(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .resourceAwsIamUserUserName(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .resourceAwsS3BucketOwnerId(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .resourceAwsS3BucketOwnerName(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .resourceContainerImageId(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .resourceContainerImageName(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .resourceContainerLaunchedAt(List.of(DateFilterProperty.builder()
                 .dateRange(DateRangeProperty.builder()
                         .unit("unit")
                         .value(123)
                         .build())
                 .end("end")
                 .start("start")
                 .build()))
         .resourceContainerName(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .resourceDetailsOther(List.of(MapFilterProperty.builder()
                 .comparison("comparison")
                 .key("key")
                 .value("value")
                 .build()))
         .resourceId(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .resourcePartition(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .resourceRegion(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .resourceTags(List.of(MapFilterProperty.builder()
                 .comparison("comparison")
                 .key("key")
                 .value("value")
                 .build()))
         .resourceType(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .sample(List.of(BooleanFilterProperty.builder()
                 .value(false)
                 .build()))
         .severityLabel(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .severityNormalized(List.of(NumberFilterProperty.builder()
                 .eq(123)
                 .gte(123)
                 .lte(123)
                 .build()))
         .severityProduct(List.of(NumberFilterProperty.builder()
                 .eq(123)
                 .gte(123)
                 .lte(123)
                 .build()))
         .sourceUrl(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .threatIntelIndicatorCategory(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .threatIntelIndicatorLastObservedAt(List.of(DateFilterProperty.builder()
                 .dateRange(DateRangeProperty.builder()
                         .unit("unit")
                         .value(123)
                         .build())
                 .end("end")
                 .start("start")
                 .build()))
         .threatIntelIndicatorSource(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .threatIntelIndicatorSourceUrl(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .threatIntelIndicatorType(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .threatIntelIndicatorValue(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .title(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .type(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .updatedAt(List.of(DateFilterProperty.builder()
                 .dateRange(DateRangeProperty.builder()
                         .unit("unit")
                         .value(123)
                         .build())
                 .end("end")
                 .start("start")
                 .build()))
         .userDefinedFields(List.of(MapFilterProperty.builder()
                 .comparison("comparison")
                 .key("key")
                 .value("value")
                 .build()))
         .verificationState(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .vulnerabilitiesExploitAvailable(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .vulnerabilitiesFixAvailable(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .workflowState(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .workflowStatus(List.of(StringFilterProperty.builder()
                 .comparison("comparison")
                 .value("value")
                 .build()))
         .build();
 

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html

Nested Class Summary

Nested Classes

Modifier and Type	Interface	Description
static final class	CfnInsight.AwsSecurityFindingFiltersProperty.Builder	A builder for CfnInsight.AwsSecurityFindingFiltersProperty
static final class	CfnInsight.AwsSecurityFindingFiltersProperty.Jsii$Proxy	An implementation for CfnInsight.AwsSecurityFindingFiltersProperty

Method Summary

Modifier and Type	Method	Description
static CfnInsight.AwsSecurityFindingFiltersProperty.Builder	builder()
default Object	getAwsAccountId()	The AWS account ID in which a finding is generated.
default Object	getAwsAccountName()	The name of the AWS account in which a finding is generated.
default Object	getCompanyName()	The name of the findings provider (company) that owns the solution (product) that generates findings.
default Object	getComplianceAssociatedStandardsId()	The unique identifier of a standard in which a control is enabled.
default Object	getComplianceSecurityControlId()	The unique identifier of a control across standards.
default Object	getComplianceSecurityControlParametersName()	The name of a security control parameter.
default Object	getComplianceSecurityControlParametersValue()	The current value of a security control parameter.
default Object	getComplianceStatus()	Exclusive to findings that are generated as the result of a check run against a specific rule in a supported standard, such as CIS AWS Foundations.
default Object	getConfidence()	A finding's confidence.
default Object	getCreatedAt()	A timestamp that indicates when the security findings provider created the potential security issue that a finding reflects.
default Object	getCriticality()	The level of importance assigned to the resources associated with the finding.
default Object	getDescription()	A finding's description.
default Object	getFindingProviderFieldsConfidence()	The finding provider value for the finding confidence.
default Object	getFindingProviderFieldsCriticality()	The finding provider value for the level of importance assigned to the resources associated with the findings.
default Object	getFindingProviderFieldsRelatedFindingsId()	The finding identifier of a related finding that is identified by the finding provider.
default Object	getFindingProviderFieldsRelatedFindingsProductArn()	The ARN of the solution that generated a related finding that is identified by the finding provider.
default Object	getFindingProviderFieldsSeverityLabel()	The finding provider value for the severity label.
default Object	getFindingProviderFieldsSeverityOriginal()	The finding provider's original value for the severity.
default Object	getFindingProviderFieldsTypes()	One or more finding types that the finding provider assigned to the finding.
default Object	getFirstObservedAt()	A timestamp that indicates when the security findings provider first observed the potential security issue that a finding captured.
default Object	getGeneratorId()	The identifier for the solution-specific component (a discrete unit of logic) that generated a finding.
default Object	getId()	The security findings provider-specific identifier for a finding.
default Object	getKeyword()	This field is deprecated.
default Object	getLastObservedAt()	A timestamp that indicates when the security findings provider most recently observed a change in the resource that is involved in the finding.
default Object	getMalwareName()	The name of the malware that was observed.
default Object	getMalwarePath()	The filesystem path of the malware that was observed.
default Object	getMalwareState()	The state of the malware that was observed.
default Object	getMalwareType()	The type of the malware that was observed.
default Object	getNetworkDestinationDomain()	The destination domain of network-related information about a finding.
default Object	getNetworkDestinationIpV4()	The destination IPv4 address of network-related information about a finding.
default Object	getNetworkDestinationIpV6()	The destination IPv6 address of network-related information about a finding.
default Object	getNetworkDestinationPort()	The destination port of network-related information about a finding.
default Object	getNetworkDirection()	Indicates the direction of network traffic associated with a finding.
default Object	getNetworkProtocol()	The protocol of network-related information about a finding.
default Object	getNetworkSourceDomain()	The source domain of network-related information about a finding.
default Object	getNetworkSourceIpV4()	The source IPv4 address of network-related information about a finding.
default Object	getNetworkSourceIpV6()	The source IPv6 address of network-related information about a finding.
default Object	getNetworkSourceMac()	The source media access control (MAC) address of network-related information about a finding.
default Object	getNetworkSourcePort()	The source port of network-related information about a finding.
default Object	getNoteText()	The text of a note.
default Object	getNoteUpdatedAt()	The timestamp of when the note was updated.
default Object	getNoteUpdatedBy()	The principal that created a note.
default Object	getProcessLaunchedAt()	A timestamp that identifies when the process was launched.
default Object	getProcessName()	The name of the process.
default Object	getProcessParentPid()	The parent process ID.
default Object	getProcessPath()	The path to the process executable.
default Object	getProcessPid()	The process ID.
default Object	getProcessTerminatedAt()	A timestamp that identifies when the process was terminated.
default Object	getProductArn()	The ARN generated by Security Hub that uniquely identifies a third-party company (security findings provider) after this provider's product (solution that generates findings) is registered with Security Hub.
default Object	getProductFields()	A data type where security findings providers can include additional solution-specific details that aren't part of the defined AwsSecurityFinding format.
default Object	getProductName()	The name of the solution (product) that generates findings.
default Object	getRecommendationText()	The recommendation of what to do about the issue described in a finding.
default Object	getRecordState()	The updated record state for the finding.
default Object	getRegion()	The Region from which the finding was generated.
default Object	getRelatedFindingsId()	The solution-generated identifier for a related finding.
default Object	getRelatedFindingsProductArn()	The ARN of the solution that generated a related finding.
default Object	getResourceApplicationArn()	The ARN of the application that is related to a finding.
default Object	getResourceApplicationName()	The name of the application that is related to a finding.
default Object	getResourceAwsEc2InstanceIamInstanceProfileArn()	The IAM profile ARN of the instance.
default Object	getResourceAwsEc2InstanceImageId()	The Amazon Machine Image (AMI) ID of the instance.
default Object	getResourceAwsEc2InstanceIpV4Addresses()	The IPv4 addresses associated with the instance.
default Object	getResourceAwsEc2InstanceIpV6Addresses()	The IPv6 addresses associated with the instance.
default Object	getResourceAwsEc2InstanceKeyName()	The key name associated with the instance.
default Object	getResourceAwsEc2InstanceLaunchedAt()	The date and time the instance was launched.
default Object	getResourceAwsEc2InstanceSubnetId()	The identifier of the subnet that the instance was launched in.
default Object	getResourceAwsEc2InstanceType()	The instance type of the instance.
default Object	getResourceAwsEc2InstanceVpcId()	The identifier of the VPC that the instance was launched in.
default Object	getResourceAwsIamAccessKeyCreatedAt()	The creation date/time of the IAM access key related to a finding.
default Object	getResourceAwsIamAccessKeyPrincipalName()	The name of the principal that is associated with an IAM access key.
default Object	getResourceAwsIamAccessKeyStatus()	The status of the IAM access key related to a finding.
default Object	getResourceAwsIamAccessKeyUserName()	This field is deprecated.
default Object	getResourceAwsIamUserUserName()	The name of an IAM user.
default Object	getResourceAwsS3BucketOwnerId()	The canonical user ID of the owner of the S3 bucket.
default Object	getResourceAwsS3BucketOwnerName()	The display name of the owner of the S3 bucket.
default Object	getResourceContainerImageId()	The identifier of the image related to a finding.
default Object	getResourceContainerImageName()	The name of the image related to a finding.
default Object	getResourceContainerLaunchedAt()	A timestamp that identifies when the container was started.
default Object	getResourceContainerName()	The name of the container related to a finding.
default Object	getResourceDetailsOther()	The details of a resource that doesn't have a specific subfield for the resource type defined.
default Object	getResourceId()	The canonical identifier for the given resource type.
default Object	getResourcePartition()	The canonical AWS partition name that the Region is assigned to.
default Object	getResourceRegion()	The canonical AWS external Region name where this resource is located.
default Object	getResourceTags()	A list of AWS tags associated with a resource at the time the finding was processed.
default Object	getResourceType()	Specifies the type of the resource that details are provided for.
default Object	getSample()	Indicates whether or not sample findings are included in the filter results.
default Object	getSeverityLabel()	The label of a finding's severity.
default Object	getSeverityNormalized()	Deprecated.
default Object	getSeverityProduct()	Deprecated.
default Object	getSourceUrl()	A URL that links to a page about the current finding in the security findings provider's solution.
default Object	getThreatIntelIndicatorCategory()	The category of a threat intelligence indicator.
default Object	getThreatIntelIndicatorLastObservedAt()	A timestamp that identifies the last observation of a threat intelligence indicator.
default Object	getThreatIntelIndicatorSource()	The source of the threat intelligence.
default Object	getThreatIntelIndicatorSourceUrl()	The URL for more details from the source of the threat intelligence.
default Object	getThreatIntelIndicatorType()	The type of a threat intelligence indicator.
default Object	getThreatIntelIndicatorValue()	The value of a threat intelligence indicator.
default Object	getTitle()	A finding's title.
default Object	getType()	A finding type in the format of namespace/category/classifier that classifies a finding.
default Object	getUpdatedAt()	A timestamp that indicates when the security findings provider last updated the finding record.
default Object	getUserDefinedFields()	A list of name/value string pairs associated with the finding.
default Object	getVerificationState()	The veracity of a finding.
default Object	getVulnerabilitiesExploitAvailable()	Indicates whether a software vulnerability in your environment has a known exploit.
default Object	getVulnerabilitiesFixAvailable()	Indicates whether a vulnerability is fixed in a newer version of the affected software packages.
default Object	getWorkflowState()	The workflow state of a finding.
default Object	getWorkflowStatus()	The status of the investigation into a finding.

Methods inherited from interface software.amazon.jsii.JsiiSerializable

$jsii$toJson

Method Details

getAwsAccountId

@Stability(Stable)
@Nullable
default Object getAwsAccountId()

The AWS account ID in which a finding is generated.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-awsaccountid

getAwsAccountName

@Stability(Stable)
@Nullable
default Object getAwsAccountName()

The name of the AWS account in which a finding is generated.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-awsaccountname

getCompanyName

@Stability(Stable)
@Nullable
default Object getCompanyName()

The name of the findings provider (company) that owns the solution (product) that generates findings.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-companyname

getComplianceAssociatedStandardsId

@Stability(Stable)
@Nullable
default Object getComplianceAssociatedStandardsId()

The unique identifier of a standard in which a control is enabled.

This field consists of the resource portion of the Amazon Resource Name (ARN) returned for a standard in the DescribeStandards API response.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-complianceassociatedstandardsid

getComplianceSecurityControlId

@Stability(Stable)
@Nullable
default Object getComplianceSecurityControlId()

The unique identifier of a control across standards.

Values for this field typically consist of an AWS service and a number, such as APIGateway.5.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-compliancesecuritycontrolid

getComplianceSecurityControlParametersName

@Stability(Stable)
@Nullable
default Object getComplianceSecurityControlParametersName()

The name of a security control parameter.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-compliancesecuritycontrolparametersname

getComplianceSecurityControlParametersValue

@Stability(Stable)
@Nullable
default Object getComplianceSecurityControlParametersValue()

The current value of a security control parameter.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-compliancesecuritycontrolparametersvalue

getComplianceStatus

@Stability(Stable)
@Nullable
default Object getComplianceStatus()

Exclusive to findings that are generated as the result of a check run against a specific rule in a supported standard, such as CIS AWS Foundations.

Contains security standard-related finding details.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-compliancestatus

getConfidence

@Stability(Stable)
@Nullable
default Object getConfidence()

A finding's confidence.

Confidence is defined as the likelihood that a finding accurately identifies the behavior or issue that it was intended to identify.

Confidence is scored on a 0-100 basis using a ratio scale, where 0 means zero percent confidence and 100 means 100 percent confidence.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-confidence

getCreatedAt

@Stability(Stable)
@Nullable
default Object getCreatedAt()

A timestamp that indicates when the security findings provider created the potential security issue that a finding reflects.

For more information about the validation and formatting of timestamp fields in AWS Security Hub , see Timestamps .

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-createdat

getCriticality

@Stability(Stable)
@Nullable
default Object getCriticality()

The level of importance assigned to the resources associated with the finding.

A score of 0 means that the underlying resources have no criticality, and a score of 100 is reserved for the most critical resources.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-criticality

getDescription

@Stability(Stable)
@Nullable
default Object getDescription()

A finding's description.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-description

getFindingProviderFieldsConfidence

@Stability(Stable)
@Nullable
default Object getFindingProviderFieldsConfidence()

The finding provider value for the finding confidence.

Confidence is defined as the likelihood that a finding accurately identifies the behavior or issue that it was intended to identify.

Confidence is scored on a 0-100 basis using a ratio scale, where 0 means zero percent confidence and 100 means 100 percent confidence.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-findingproviderfieldsconfidence

getFindingProviderFieldsCriticality

@Stability(Stable)
@Nullable
default Object getFindingProviderFieldsCriticality()

The finding provider value for the level of importance assigned to the resources associated with the findings.

A score of 0 means that the underlying resources have no criticality, and a score of 100 is reserved for the most critical resources.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-findingproviderfieldscriticality

getFindingProviderFieldsRelatedFindingsId

@Stability(Stable)
@Nullable
default Object getFindingProviderFieldsRelatedFindingsId()

The finding identifier of a related finding that is identified by the finding provider.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-findingproviderfieldsrelatedfindingsid

getFindingProviderFieldsRelatedFindingsProductArn

@Stability(Stable)
@Nullable
default Object getFindingProviderFieldsRelatedFindingsProductArn()

The ARN of the solution that generated a related finding that is identified by the finding provider.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-findingproviderfieldsrelatedfindingsproductarn

getFindingProviderFieldsSeverityLabel

@Stability(Stable)
@Nullable
default Object getFindingProviderFieldsSeverityLabel()

The finding provider value for the severity label.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-findingproviderfieldsseveritylabel

getFindingProviderFieldsSeverityOriginal

@Stability(Stable)
@Nullable
default Object getFindingProviderFieldsSeverityOriginal()

The finding provider's original value for the severity.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-findingproviderfieldsseverityoriginal

getFindingProviderFieldsTypes

@Stability(Stable)
@Nullable
default Object getFindingProviderFieldsTypes()

One or more finding types that the finding provider assigned to the finding.

Uses the format of namespace/category/classifier that classify a finding.

Valid namespace values are: Software and Configuration Checks | TTPs | Effects | Unusual Behaviors | Sensitive Data Identifications

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-findingproviderfieldstypes

getFirstObservedAt

@Stability(Stable)
@Nullable
default Object getFirstObservedAt()

A timestamp that indicates when the security findings provider first observed the potential security issue that a finding captured.

For more information about the validation and formatting of timestamp fields in AWS Security Hub , see Timestamps .

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-firstobservedat

getGeneratorId

@Stability(Stable)
@Nullable
default Object getGeneratorId()

The identifier for the solution-specific component (a discrete unit of logic) that generated a finding.

In various security findings providers' solutions, this generator can be called a rule, a check, a detector, a plugin, etc.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-generatorid

getId

@Stability(Stable)
@Nullable
default Object getId()

The security findings provider-specific identifier for a finding.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-id

getKeyword

@Stability(Stable)
@Nullable
default Object getKeyword()

This field is deprecated.

A keyword for a finding.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-keyword

getLastObservedAt

@Stability(Stable)
@Nullable
default Object getLastObservedAt()

A timestamp that indicates when the security findings provider most recently observed a change in the resource that is involved in the finding.

For more information about the validation and formatting of timestamp fields in AWS Security Hub , see Timestamps .

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-lastobservedat

getMalwareName

@Stability(Stable)
@Nullable
default Object getMalwareName()

The name of the malware that was observed.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-malwarename

getMalwarePath

@Stability(Stable)
@Nullable
default Object getMalwarePath()

The filesystem path of the malware that was observed.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-malwarepath

getMalwareState

@Stability(Stable)
@Nullable
default Object getMalwareState()

The state of the malware that was observed.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-malwarestate

getMalwareType

@Stability(Stable)
@Nullable
default Object getMalwareType()

The type of the malware that was observed.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-malwaretype

getNetworkDestinationDomain

@Stability(Stable)
@Nullable
default Object getNetworkDestinationDomain()

The destination domain of network-related information about a finding.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-networkdestinationdomain

getNetworkDestinationIpV4

@Stability(Stable)
@Nullable
default Object getNetworkDestinationIpV4()

The destination IPv4 address of network-related information about a finding.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-networkdestinationipv4

getNetworkDestinationIpV6

@Stability(Stable)
@Nullable
default Object getNetworkDestinationIpV6()

The destination IPv6 address of network-related information about a finding.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-networkdestinationipv6

getNetworkDestinationPort

@Stability(Stable)
@Nullable
default Object getNetworkDestinationPort()

The destination port of network-related information about a finding.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-networkdestinationport

getNetworkDirection

@Stability(Stable)
@Nullable
default Object getNetworkDirection()

Indicates the direction of network traffic associated with a finding.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-networkdirection

getNetworkProtocol

@Stability(Stable)
@Nullable
default Object getNetworkProtocol()

The protocol of network-related information about a finding.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-networkprotocol

getNetworkSourceDomain

@Stability(Stable)
@Nullable
default Object getNetworkSourceDomain()

The source domain of network-related information about a finding.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-networksourcedomain

getNetworkSourceIpV4

@Stability(Stable)
@Nullable
default Object getNetworkSourceIpV4()

The source IPv4 address of network-related information about a finding.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-networksourceipv4

getNetworkSourceIpV6

@Stability(Stable)
@Nullable
default Object getNetworkSourceIpV6()

The source IPv6 address of network-related information about a finding.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-networksourceipv6

getNetworkSourceMac

@Stability(Stable)
@Nullable
default Object getNetworkSourceMac()

The source media access control (MAC) address of network-related information about a finding.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-networksourcemac

getNetworkSourcePort

@Stability(Stable)
@Nullable
default Object getNetworkSourcePort()

The source port of network-related information about a finding.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-networksourceport

getNoteText

@Stability(Stable)
@Nullable
default Object getNoteText()

The text of a note.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-notetext

getNoteUpdatedAt

@Stability(Stable)
@Nullable
default Object getNoteUpdatedAt()

The timestamp of when the note was updated.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-noteupdatedat

getNoteUpdatedBy

@Stability(Stable)
@Nullable
default Object getNoteUpdatedBy()

The principal that created a note.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-noteupdatedby

getProcessLaunchedAt

@Stability(Stable)
@Nullable
default Object getProcessLaunchedAt()

A timestamp that identifies when the process was launched.

For more information about the validation and formatting of timestamp fields in AWS Security Hub , see Timestamps .

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-processlaunchedat

getProcessName

@Stability(Stable)
@Nullable
default Object getProcessName()

The name of the process.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-processname

getProcessParentPid

@Stability(Stable)
@Nullable
default Object getProcessParentPid()

The parent process ID.

This field accepts positive integers between O and 2147483647 .

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-processparentpid

getProcessPath

@Stability(Stable)
@Nullable
default Object getProcessPath()

The path to the process executable.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-processpath

getProcessPid

@Stability(Stable)
@Nullable
default Object getProcessPid()

The process ID.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-processpid

getProcessTerminatedAt

@Stability(Stable)
@Nullable
default Object getProcessTerminatedAt()

A timestamp that identifies when the process was terminated.

For more information about the validation and formatting of timestamp fields in AWS Security Hub , see Timestamps .

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-processterminatedat

getProductArn

@Stability(Stable)
@Nullable
default Object getProductArn()

The ARN generated by Security Hub that uniquely identifies a third-party company (security findings provider) after this provider's product (solution that generates findings) is registered with Security Hub.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-productarn

getProductFields

@Stability(Stable)
@Nullable
default Object getProductFields()

A data type where security findings providers can include additional solution-specific details that aren't part of the defined AwsSecurityFinding format.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-productfields

getProductName

@Stability(Stable)
@Nullable
default Object getProductName()

The name of the solution (product) that generates findings.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-productname

getRecommendationText

@Stability(Stable)
@Nullable
default Object getRecommendationText()

The recommendation of what to do about the issue described in a finding.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-recommendationtext

getRecordState

@Stability(Stable)
@Nullable
default Object getRecordState()

The updated record state for the finding.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-recordstate

getRegion

@Stability(Stable)
@Nullable
default Object getRegion()

The Region from which the finding was generated.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-region

getRelatedFindingsId

@Stability(Stable)
@Nullable
default Object getRelatedFindingsId()

The solution-generated identifier for a related finding.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-relatedfindingsid

getRelatedFindingsProductArn

@Stability(Stable)
@Nullable
default Object getRelatedFindingsProductArn()

The ARN of the solution that generated a related finding.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-relatedfindingsproductarn

getResourceApplicationArn

@Stability(Stable)
@Nullable
default Object getResourceApplicationArn()

The ARN of the application that is related to a finding.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-resourceapplicationarn

getResourceApplicationName

@Stability(Stable)
@Nullable
default Object getResourceApplicationName()

The name of the application that is related to a finding.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-resourceapplicationname

getResourceAwsEc2InstanceIamInstanceProfileArn

@Stability(Stable)
@Nullable
default Object getResourceAwsEc2InstanceIamInstanceProfileArn()

The IAM profile ARN of the instance.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-resourceawsec2instanceiaminstanceprofilearn

getResourceAwsEc2InstanceImageId

@Stability(Stable)
@Nullable
default Object getResourceAwsEc2InstanceImageId()

The Amazon Machine Image (AMI) ID of the instance.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-resourceawsec2instanceimageid

getResourceAwsEc2InstanceIpV4Addresses

@Stability(Stable)
@Nullable
default Object getResourceAwsEc2InstanceIpV4Addresses()

The IPv4 addresses associated with the instance.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-resourceawsec2instanceipv4addresses

getResourceAwsEc2InstanceIpV6Addresses

@Stability(Stable)
@Nullable
default Object getResourceAwsEc2InstanceIpV6Addresses()

The IPv6 addresses associated with the instance.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-resourceawsec2instanceipv6addresses

getResourceAwsEc2InstanceKeyName

@Stability(Stable)
@Nullable
default Object getResourceAwsEc2InstanceKeyName()

The key name associated with the instance.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-resourceawsec2instancekeyname

getResourceAwsEc2InstanceLaunchedAt

@Stability(Stable)
@Nullable
default Object getResourceAwsEc2InstanceLaunchedAt()

The date and time the instance was launched.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-resourceawsec2instancelaunchedat

getResourceAwsEc2InstanceSubnetId

@Stability(Stable)
@Nullable
default Object getResourceAwsEc2InstanceSubnetId()

The identifier of the subnet that the instance was launched in.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-resourceawsec2instancesubnetid

getResourceAwsEc2InstanceType

@Stability(Stable)
@Nullable
default Object getResourceAwsEc2InstanceType()

The instance type of the instance.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-resourceawsec2instancetype

getResourceAwsEc2InstanceVpcId

@Stability(Stable)
@Nullable
default Object getResourceAwsEc2InstanceVpcId()

The identifier of the VPC that the instance was launched in.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-resourceawsec2instancevpcid

getResourceAwsIamAccessKeyCreatedAt

@Stability(Stable)
@Nullable
default Object getResourceAwsIamAccessKeyCreatedAt()

The creation date/time of the IAM access key related to a finding.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-resourceawsiamaccesskeycreatedat

getResourceAwsIamAccessKeyPrincipalName

@Stability(Stable)
@Nullable
default Object getResourceAwsIamAccessKeyPrincipalName()

The name of the principal that is associated with an IAM access key.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-resourceawsiamaccesskeyprincipalname

getResourceAwsIamAccessKeyStatus

@Stability(Stable)
@Nullable
default Object getResourceAwsIamAccessKeyStatus()

The status of the IAM access key related to a finding.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-resourceawsiamaccesskeystatus

getResourceAwsIamAccessKeyUserName

@Stability(Stable)
@Nullable
default Object getResourceAwsIamAccessKeyUserName()

This field is deprecated.

The username associated with the IAM access key related to a finding.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-resourceawsiamaccesskeyusername

getResourceAwsIamUserUserName

@Stability(Stable)
@Nullable
default Object getResourceAwsIamUserUserName()

The name of an IAM user.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-resourceawsiamuserusername

getResourceAwsS3BucketOwnerId

@Stability(Stable)
@Nullable
default Object getResourceAwsS3BucketOwnerId()

The canonical user ID of the owner of the S3 bucket.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-resourceawss3bucketownerid

getResourceAwsS3BucketOwnerName

@Stability(Stable)
@Nullable
default Object getResourceAwsS3BucketOwnerName()

The display name of the owner of the S3 bucket.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-resourceawss3bucketownername

getResourceContainerImageId

@Stability(Stable)
@Nullable
default Object getResourceContainerImageId()

The identifier of the image related to a finding.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-resourcecontainerimageid

getResourceContainerImageName

@Stability(Stable)
@Nullable
default Object getResourceContainerImageName()

The name of the image related to a finding.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-resourcecontainerimagename

getResourceContainerLaunchedAt

@Stability(Stable)
@Nullable
default Object getResourceContainerLaunchedAt()

A timestamp that identifies when the container was started.

For more information about the validation and formatting of timestamp fields in AWS Security Hub , see Timestamps .

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-resourcecontainerlaunchedat

getResourceContainerName

@Stability(Stable)
@Nullable
default Object getResourceContainerName()

The name of the container related to a finding.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-resourcecontainername

getResourceDetailsOther

@Stability(Stable)
@Nullable
default Object getResourceDetailsOther()

The details of a resource that doesn't have a specific subfield for the resource type defined.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-resourcedetailsother

getResourceId

@Stability(Stable)
@Nullable
default Object getResourceId()

The canonical identifier for the given resource type.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-resourceid

getResourcePartition

@Stability(Stable)
@Nullable
default Object getResourcePartition()

The canonical AWS partition name that the Region is assigned to.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-resourcepartition

getResourceRegion

@Stability(Stable)
@Nullable
default Object getResourceRegion()

The canonical AWS external Region name where this resource is located.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-resourceregion

getResourceTags

@Stability(Stable)
@Nullable
default Object getResourceTags()

A list of AWS tags associated with a resource at the time the finding was processed.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-resourcetags

getResourceType

@Stability(Stable)
@Nullable
default Object getResourceType()

Specifies the type of the resource that details are provided for.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-resourcetype

getSample

@Stability(Stable)
@Nullable
default Object getSample()

Indicates whether or not sample findings are included in the filter results.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-sample

getSeverityLabel

@Stability(Stable)
@Nullable
default Object getSeverityLabel()

The label of a finding's severity.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-severitylabel

getSeverityNormalized

@Stability(Stable)
@Nullable
default Object getSeverityNormalized()

Deprecated. The normalized severity of a finding. Instead of providing Normalized , provide Label .

The value of Normalized can be an integer between 0 and 100 .

If you provide Label and don't provide Normalized , then Normalized is set automatically as follows.

• INFORMATIONAL - 0
• LOW - 1
• MEDIUM - 40
• HIGH - 70
• CRITICAL - 90

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-severitynormalized

getSeverityProduct

@Stability(Stable)
@Nullable
default Object getSeverityProduct()

Deprecated. This attribute isn't included in findings. Instead of providing Product , provide Original .

The native severity as defined by the AWS service or integrated partner product that generated the finding.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-severityproduct

getSourceUrl

@Stability(Stable)
@Nullable
default Object getSourceUrl()

A URL that links to a page about the current finding in the security findings provider's solution.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-sourceurl

getThreatIntelIndicatorCategory

@Stability(Stable)
@Nullable
default Object getThreatIntelIndicatorCategory()

The category of a threat intelligence indicator.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-threatintelindicatorcategory

getThreatIntelIndicatorLastObservedAt

@Stability(Stable)
@Nullable
default Object getThreatIntelIndicatorLastObservedAt()

A timestamp that identifies the last observation of a threat intelligence indicator.

For more information about the validation and formatting of timestamp fields in AWS Security Hub , see Timestamps .

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-threatintelindicatorlastobservedat

getThreatIntelIndicatorSource

@Stability(Stable)
@Nullable
default Object getThreatIntelIndicatorSource()

The source of the threat intelligence.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-threatintelindicatorsource

getThreatIntelIndicatorSourceUrl

@Stability(Stable)
@Nullable
default Object getThreatIntelIndicatorSourceUrl()

The URL for more details from the source of the threat intelligence.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-threatintelindicatorsourceurl

getThreatIntelIndicatorType

@Stability(Stable)
@Nullable
default Object getThreatIntelIndicatorType()

The type of a threat intelligence indicator.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-threatintelindicatortype

getThreatIntelIndicatorValue

@Stability(Stable)
@Nullable
default Object getThreatIntelIndicatorValue()

The value of a threat intelligence indicator.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-threatintelindicatorvalue

getTitle

@Stability(Stable)
@Nullable
default Object getTitle()

A finding's title.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-title

getType

@Stability(Stable)
@Nullable
default Object getType()

A finding type in the format of namespace/category/classifier that classifies a finding.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-type

getUpdatedAt

@Stability(Stable)
@Nullable
default Object getUpdatedAt()

A timestamp that indicates when the security findings provider last updated the finding record.

For more information about the validation and formatting of timestamp fields in AWS Security Hub , see Timestamps .

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-updatedat

getUserDefinedFields

@Stability(Stable)
@Nullable
default Object getUserDefinedFields()

A list of name/value string pairs associated with the finding.

These are custom, user-defined fields added to a finding.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-userdefinedfields

getVerificationState

@Stability(Stable)
@Nullable
default Object getVerificationState()

The veracity of a finding.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-verificationstate

getVulnerabilitiesExploitAvailable

@Stability(Stable)
@Nullable
default Object getVulnerabilitiesExploitAvailable()

Indicates whether a software vulnerability in your environment has a known exploit.

You can filter findings by this field only if you use Security Hub and Amazon Inspector.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-vulnerabilitiesexploitavailable

getVulnerabilitiesFixAvailable

@Stability(Stable)
@Nullable
default Object getVulnerabilitiesFixAvailable()

Indicates whether a vulnerability is fixed in a newer version of the affected software packages.

You can filter findings by this field only if you use Security Hub and Amazon Inspector.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-vulnerabilitiesfixavailable

getWorkflowState

@Stability(Stable)
@Nullable
default Object getWorkflowState()

The workflow state of a finding.

Note that this field is deprecated. To search for a finding based on its workflow status, use WorkflowStatus .

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-workflowstate

getWorkflowStatus

@Stability(Stable)
@Nullable
default Object getWorkflowStatus()

The status of the investigation into a finding. Allowed values are the following.

• NEW - The initial state of a finding, before it is reviewed.

Security Hub also resets the workflow status from NOTIFIED or RESOLVED to NEW in the following cases:

• RecordState changes from ARCHIVED to ACTIVE .
• Compliance.Status changes from PASSED to either WARNING , FAILED , or NOT_AVAILABLE .
• NOTIFIED - Indicates that the resource owner has been notified about the security issue. Used when the initial reviewer is not the resource owner, and needs intervention from the resource owner.

If one of the following occurs, the workflow status is changed automatically from NOTIFIED to NEW :

• RecordState changes from ARCHIVED to ACTIVE .
• Compliance.Status changes from PASSED to FAILED , WARNING , or NOT_AVAILABLE .
• SUPPRESSED - Indicates that you reviewed the finding and don't believe that any action is needed.

The workflow status of a SUPPRESSED finding does not change if RecordState changes from ARCHIVED to ACTIVE .

• RESOLVED - The finding was reviewed and remediated and is now considered resolved.

The finding remains RESOLVED unless one of the following occurs:

• RecordState changes from ARCHIVED to ACTIVE .
• Compliance.Status changes from PASSED to FAILED , WARNING , or NOT_AVAILABLE .

In those cases, the workflow status is automatically reset to NEW .

For findings from controls, if Compliance.Status is PASSED , then Security Hub automatically sets the workflow status to RESOLVED .

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-insight-awssecurityfindingfilters.html#cfn-securityhub-insight-awssecurityfindingfilters-workflowstatus

builder

@Stability(Stable)
static CfnInsight.AwsSecurityFindingFiltersProperty.Builder builder()

Returns:

a CfnInsight.AwsSecurityFindingFiltersProperty.Builder of CfnInsight.AwsSecurityFindingFiltersProperty