Finding - Inspector

Finding

Details about an Amazon Inspector finding.

Contents

awsAccountId

The AWS account ID associated with the finding.

Type: String

Length Constraints: Fixed length of 12.

Pattern: ^\d{12}$

Required: Yes

description

The description of the finding.

Type: String

Length Constraints: Minimum length of 1. Maximum length of 1024.

Required: Yes

findingArn

The Amazon Resource Number (ARN) of the finding.

Type: String

Length Constraints: Minimum length of 1. Maximum length of 100.

Pattern: ^arn:(aws[a-zA-Z-]*)?:inspector2:[a-z]{2}(-gov)?-[a-z]+-\d{1}:\d{12}:finding/[a-f0-9]{32}$

Required: Yes

firstObservedAt

The date and time that the finding was first observed.

Type: Timestamp

Required: Yes

lastObservedAt

The date and time the finding was last observed. This timestamp for this field remains unchanged until a finding is updated.

Type: Timestamp

Required: Yes

remediation

An object that contains the details about how to remediate a finding.

Type: Remediation object

Required: Yes

resources

Contains information on the resources involved in a finding. The resource value determines the valid values for type in your request. For more information, see Finding types in the Amazon Inspector user guide.

Type: Array of Resource objects

Array Members: Minimum number of 1 item. Maximum number of 10 items.

Required: Yes

severity

The severity of the finding. UNTRIAGED applies to PACKAGE_VULNERABILITY type findings that the vendor has not assigned a severity yet. For more information, see Severity levels for findings in the Amazon Inspector user guide.

Type: String

Valid Values: INFORMATIONAL | LOW | MEDIUM | HIGH | CRITICAL | UNTRIAGED

Required: Yes

status

The status of the finding.

Type: String

Valid Values: ACTIVE | SUPPRESSED | CLOSED

Required: Yes

type

The type of the finding. The type value determines the valid values for resource in your request. For more information, see Finding types in the Amazon Inspector user guide.

Type: String

Valid Values: NETWORK_REACHABILITY | PACKAGE_VULNERABILITY | CODE_VULNERABILITY

Required: Yes

codeVulnerabilityDetails

Details about the code vulnerability identified in a Lambda function used to filter findings.

Type: CodeVulnerabilityDetails object

Required: No

epss

The finding's EPSS score.

Type: EpssDetails object

Required: No

exploitabilityDetails

The details of an exploit available for a finding discovered in your environment.

Type: ExploitabilityDetails object

Required: No

exploitAvailable

If a finding discovered in your environment has an exploit available.

Type: String

Valid Values: YES | NO

Required: No

fixAvailable

Details on whether a fix is available through a version update. This value can be YES, NO, or PARTIAL. A PARTIAL fix means that some, but not all, of the packages identified in the finding have fixes available through updated versions.

Type: String

Valid Values: YES | NO | PARTIAL

Required: No

inspectorScore

The Amazon Inspector score given to the finding.

Type: Double

Required: No

inspectorScoreDetails

An object that contains details of the Amazon Inspector score.

Type: InspectorScoreDetails object

Required: No

networkReachabilityDetails

An object that contains the details of a network reachability finding.

Type: NetworkReachabilityDetails object

Required: No

packageVulnerabilityDetails

An object that contains the details of a package vulnerability finding.

Type: PackageVulnerabilityDetails object

Required: No

title

The title of the finding.

Type: String

Length Constraints: Minimum length of 1. Maximum length of 1024.

Required: No

updatedAt

The date and time the finding was last updated at.

Type: Timestamp

Required: No

See Also

For more information about using this API in one of the language-specific AWS SDKs, see the following: