CfnSecurityControlProps

class aws_cdk.aws_securityhub.CfnSecurityControlProps(*, parameters, last_update_reason=None, security_control_arn=None, security_control_id=None)

Bases: object

Properties for defining a CfnSecurityControl.

Parameters:

  • parameters (Union[IResolvable, Mapping[str, Union[IResolvable, ParameterConfigurationProperty, Dict[str, Any]]]]) – An object that identifies the name of a control parameter, its current value, and whether it has been customized.

  • last_update_reason (Optional[str]) – The most recent reason for updating the customizable properties of a security control. This differs from the UpdateReason field of the `BatchUpdateStandardsControlAssociations <https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_BatchUpdateStandardsControlAssociations.html>`_ API, which tracks the reason for updating the enablement status of a control. This field accepts alphanumeric characters in addition to white spaces, dashes, and underscores.

  • security_control_arn (Optional[str]) – The Amazon Resource Name (ARN) for a security control across standards, such as arn:aws:securityhub:eu-central-1:123456789012:security-control/S3.1 . This parameter doesn’t mention a specific standard.

  • security_control_id (Optional[str]) – The unique identifier of a security control across standards. Values for this field typically consist of an AWS service name and a number, such as APIGateway.3.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-securityhub-securitycontrol.html

ExampleMetadata:

fixture=_generated

Example:

# The code below shows an example of how to instantiate this type.
# The values are placeholders you should change.
from aws_cdk import aws_securityhub as securityhub

cfn_security_control_props = securityhub.CfnSecurityControlProps(
    parameters={
        "parameters_key": securityhub.CfnSecurityControl.ParameterConfigurationProperty(
            value_type="valueType"
        )
    },

    # the properties below are optional
    last_update_reason="lastUpdateReason",
    security_control_arn="securityControlArn",
    security_control_id="securityControlId"
)

Attributes

last_update_reason

The most recent reason for updating the customizable properties of a security control.

This differs from the UpdateReason field of the `BatchUpdateStandardsControlAssociations <https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_BatchUpdateStandardsControlAssociations.html>`_ API, which tracks the reason for updating the enablement status of a control. This field accepts alphanumeric characters in addition to white spaces, dashes, and underscores.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-securityhub-securitycontrol.html#cfn-securityhub-securitycontrol-lastupdatereason

parameters

An object that identifies the name of a control parameter, its current value, and whether it has been customized.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-securityhub-securitycontrol.html#cfn-securityhub-securitycontrol-parameters

security_control_arn

The Amazon Resource Name (ARN) for a security control across standards, such as arn:aws:securityhub:eu-central-1:123456789012:security-control/S3.1 . This parameter doesn’t mention a specific standard.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-securityhub-securitycontrol.html#cfn-securityhub-securitycontrol-securitycontrolarn

security_control_id

The unique identifier of a security control across standards.

Values for this field typically consist of an AWS service name and a number, such as APIGateway.3.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-securityhub-securitycontrol.html#cfn-securityhub-securitycontrol-securitycontrolid