ListImageScanFindings - EC2 Image Builder


Returns a list of image scan findings for your account.

Request Syntax

POST /ListImageScanFindings HTTP/1.1 Content-type: application/json { "filters": [ { "name": "string", "values": [ "string" ] } ], "maxResults": number, "nextToken": "string" }

URI Request Parameters

The request does not use any URI parameters.

Request Body

The request accepts the following data in JSON format.


An array of name value pairs that you can use to filter your results. You can use the following filters to streamline results:

  • imageBuildVersionArn

  • imagePipelineArn

  • vulnerabilityId

  • severity

If you don't request a filter, then all findings in your account are listed.

Type: Array of ImageScanFindingsFilter objects

Array Members: Fixed number of 1 item.

Required: No


The maximum items to return in a request.

Type: Integer

Valid Range: Minimum value of 1. Maximum value of 25.

Required: No


A token to specify where to start paginating. This is the nextToken from a previously truncated response.

Type: String

Length Constraints: Minimum length of 1. Maximum length of 65535.

Required: No

Response Syntax

HTTP/1.1 200 Content-type: application/json { "findings": [ { "awsAccountId": "string", "description": "string", "firstObservedAt": number, "fixAvailable": "string", "imageBuildVersionArn": "string", "imagePipelineArn": "string", "inspectorScore": number, "inspectorScoreDetails": { "adjustedCvss": { "adjustments": [ { "metric": "string", "reason": "string" } ], "cvssSource": "string", "score": number, "scoreSource": "string", "scoringVector": "string", "version": "string" } }, "packageVulnerabilityDetails": { "cvss": [ { "baseScore": number, "scoringVector": "string", "source": "string", "version": "string" } ], "referenceUrls": [ "string" ], "relatedVulnerabilities": [ "string" ], "source": "string", "sourceUrl": "string", "vendorCreatedAt": number, "vendorSeverity": "string", "vendorUpdatedAt": number, "vulnerabilityId": "string", "vulnerablePackages": [ { "arch": "string", "epoch": number, "filePath": "string", "fixedInVersion": "string", "name": "string", "packageManager": "string", "release": "string", "remediation": "string", "sourceLayerHash": "string", "version": "string" } ] }, "remediation": { "recommendation": { "text": "string", "url": "string" } }, "severity": "string", "title": "string", "type": "string", "updatedAt": number } ], "nextToken": "string", "requestId": "string" }

Response Elements

If the action is successful, the service sends back an HTTP 200 response.

The following data is returned in JSON format by the service.


The image scan findings for your account that meet your request filter criteria.

Type: Array of ImageScanFinding objects

Array Members: Maximum number of 25 items.


The next token used for paginated responses. When this field isn't empty, there are additional elements that the service hasn't included in this request. Use this token with the next request to retrieve additional objects.

Type: String

Length Constraints: Minimum length of 1. Maximum length of 65535.


The request ID that uniquely identifies this request.

Type: String

Length Constraints: Minimum length of 1. Maximum length of 1024.


For information about the errors that are common to all actions, see Common Errors.


You have exceeded the permitted request rate for the specific operation.

HTTP Status Code: 429


These errors are usually caused by a client action, such as using an action or resource on behalf of a user that doesn't have permissions to use the action or resource, or specifying an invalid resource identifier.

HTTP Status Code: 400


You are not authorized to perform the requested operation.

HTTP Status Code: 403


You have provided an invalid pagination token in your request.

HTTP Status Code: 400


You have requested an action that that the service doesn't support.

HTTP Status Code: 400


This exception is thrown when the service encounters an unrecoverable exception.

HTTP Status Code: 500


The service is unable to process your request at this time.

HTTP Status Code: 503

See Also

For more information about using this API in one of the language-specific AWS SDKs, see the following: