CfnInsightProps
- class aws_cdk.aws_securityhub.CfnInsightProps(*, filters, group_by_attribute, name)
Bases:
objectProperties for defining a
CfnInsight.- Parameters:
filters (
Union[IResolvable,AwsSecurityFindingFiltersProperty,Dict[str,Any]]) – One or more attributes used to filter the findings included in the insight. The insight only includes findings that match the criteria defined in the filters. You can filter by up to ten finding attributes. For each attribute, you can provide up to 20 filter values.group_by_attribute (
str) – The grouping attribute for the insight’s findings. Indicates how to group the matching findings, and identifies the type of item that the insight applies to. For example, if an insight is grouped by resource identifier, then the insight produces a list of resource identifiers.name (
str) – The name of a Security Hub insight.
- See:
http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-securityhub-insight.html
- ExampleMetadata:
fixture=_generated
Example:
# The code below shows an example of how to instantiate this type. # The values are placeholders you should change. from aws_cdk import aws_securityhub as securityhub cfn_insight_props = securityhub.CfnInsightProps( filters=securityhub.CfnInsight.AwsSecurityFindingFiltersProperty( aws_account_id=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], aws_account_name=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], company_name=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], compliance_associated_standards_id=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], compliance_security_control_id=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], compliance_security_control_parameters_name=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], compliance_security_control_parameters_value=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], compliance_status=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], confidence=[securityhub.CfnInsight.NumberFilterProperty( eq=123, gte=123, lte=123 )], created_at=[securityhub.CfnInsight.DateFilterProperty( date_range=securityhub.CfnInsight.DateRangeProperty( unit="unit", value=123 ), end="end", start="start" )], criticality=[securityhub.CfnInsight.NumberFilterProperty( eq=123, gte=123, lte=123 )], description=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], finding_provider_fields_confidence=[securityhub.CfnInsight.NumberFilterProperty( eq=123, gte=123, lte=123 )], finding_provider_fields_criticality=[securityhub.CfnInsight.NumberFilterProperty( eq=123, gte=123, lte=123 )], finding_provider_fields_related_findings_id=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], finding_provider_fields_related_findings_product_arn=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], finding_provider_fields_severity_label=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], finding_provider_fields_severity_original=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], finding_provider_fields_types=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], first_observed_at=[securityhub.CfnInsight.DateFilterProperty( date_range=securityhub.CfnInsight.DateRangeProperty( unit="unit", value=123 ), end="end", start="start" )], generator_id=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], id=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], keyword=[securityhub.CfnInsight.KeywordFilterProperty( value="value" )], last_observed_at=[securityhub.CfnInsight.DateFilterProperty( date_range=securityhub.CfnInsight.DateRangeProperty( unit="unit", value=123 ), end="end", start="start" )], malware_name=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], malware_path=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], malware_state=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], malware_type=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], network_destination_domain=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], network_destination_ip_v4=[securityhub.CfnInsight.IpFilterProperty( cidr="cidr" )], network_destination_ip_v6=[securityhub.CfnInsight.IpFilterProperty( cidr="cidr" )], network_destination_port=[securityhub.CfnInsight.NumberFilterProperty( eq=123, gte=123, lte=123 )], network_direction=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], network_protocol=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], network_source_domain=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], network_source_ip_v4=[securityhub.CfnInsight.IpFilterProperty( cidr="cidr" )], network_source_ip_v6=[securityhub.CfnInsight.IpFilterProperty( cidr="cidr" )], network_source_mac=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], network_source_port=[securityhub.CfnInsight.NumberFilterProperty( eq=123, gte=123, lte=123 )], note_text=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], note_updated_at=[securityhub.CfnInsight.DateFilterProperty( date_range=securityhub.CfnInsight.DateRangeProperty( unit="unit", value=123 ), end="end", start="start" )], note_updated_by=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], process_launched_at=[securityhub.CfnInsight.DateFilterProperty( date_range=securityhub.CfnInsight.DateRangeProperty( unit="unit", value=123 ), end="end", start="start" )], process_name=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], process_parent_pid=[securityhub.CfnInsight.NumberFilterProperty( eq=123, gte=123, lte=123 )], process_path=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], process_pid=[securityhub.CfnInsight.NumberFilterProperty( eq=123, gte=123, lte=123 )], process_terminated_at=[securityhub.CfnInsight.DateFilterProperty( date_range=securityhub.CfnInsight.DateRangeProperty( unit="unit", value=123 ), end="end", start="start" )], product_arn=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], product_fields=[securityhub.CfnInsight.MapFilterProperty( comparison="comparison", key="key", value="value" )], product_name=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], recommendation_text=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], record_state=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], region=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], related_findings_id=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], related_findings_product_arn=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], resource_application_arn=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], resource_application_name=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], resource_aws_ec2_instance_iam_instance_profile_arn=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], resource_aws_ec2_instance_image_id=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], resource_aws_ec2_instance_ip_v4_addresses=[securityhub.CfnInsight.IpFilterProperty( cidr="cidr" )], resource_aws_ec2_instance_ip_v6_addresses=[securityhub.CfnInsight.IpFilterProperty( cidr="cidr" )], resource_aws_ec2_instance_key_name=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], resource_aws_ec2_instance_launched_at=[securityhub.CfnInsight.DateFilterProperty( date_range=securityhub.CfnInsight.DateRangeProperty( unit="unit", value=123 ), end="end", start="start" )], resource_aws_ec2_instance_subnet_id=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], resource_aws_ec2_instance_type=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], resource_aws_ec2_instance_vpc_id=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], resource_aws_iam_access_key_created_at=[securityhub.CfnInsight.DateFilterProperty( date_range=securityhub.CfnInsight.DateRangeProperty( unit="unit", value=123 ), end="end", start="start" )], resource_aws_iam_access_key_principal_name=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], resource_aws_iam_access_key_status=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], resource_aws_iam_access_key_user_name=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], resource_aws_iam_user_user_name=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], resource_aws_s3_bucket_owner_id=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], resource_aws_s3_bucket_owner_name=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], resource_container_image_id=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], resource_container_image_name=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], resource_container_launched_at=[securityhub.CfnInsight.DateFilterProperty( date_range=securityhub.CfnInsight.DateRangeProperty( unit="unit", value=123 ), end="end", start="start" )], resource_container_name=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], resource_details_other=[securityhub.CfnInsight.MapFilterProperty( comparison="comparison", key="key", value="value" )], resource_id=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], resource_partition=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], resource_region=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], resource_tags=[securityhub.CfnInsight.MapFilterProperty( comparison="comparison", key="key", value="value" )], resource_type=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], sample=[securityhub.CfnInsight.BooleanFilterProperty( value=False )], severity_label=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], severity_normalized=[securityhub.CfnInsight.NumberFilterProperty( eq=123, gte=123, lte=123 )], severity_product=[securityhub.CfnInsight.NumberFilterProperty( eq=123, gte=123, lte=123 )], source_url=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], threat_intel_indicator_category=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], threat_intel_indicator_last_observed_at=[securityhub.CfnInsight.DateFilterProperty( date_range=securityhub.CfnInsight.DateRangeProperty( unit="unit", value=123 ), end="end", start="start" )], threat_intel_indicator_source=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], threat_intel_indicator_source_url=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], threat_intel_indicator_type=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], threat_intel_indicator_value=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], title=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], type=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], updated_at=[securityhub.CfnInsight.DateFilterProperty( date_range=securityhub.CfnInsight.DateRangeProperty( unit="unit", value=123 ), end="end", start="start" )], user_defined_fields=[securityhub.CfnInsight.MapFilterProperty( comparison="comparison", key="key", value="value" )], verification_state=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], vulnerabilities_exploit_available=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], vulnerabilities_fix_available=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], workflow_state=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )], workflow_status=[securityhub.CfnInsight.StringFilterProperty( comparison="comparison", value="value" )] ), group_by_attribute="groupByAttribute", name="name" )
Attributes
- filters
One or more attributes used to filter the findings included in the insight.
The insight only includes findings that match the criteria defined in the filters. You can filter by up to ten finding attributes. For each attribute, you can provide up to 20 filter values.
- group_by_attribute
The grouping attribute for the insight’s findings.
Indicates how to group the matching findings, and identifies the type of item that the insight applies to. For example, if an insight is grouped by resource identifier, then the insight produces a list of resource identifiers.
- name
The name of a Security Hub insight.