Compliance - AWS Security Hub

Compliance

Contains finding details that are specific to control-based findings. Only returned for findings generated from controls.

Contents

RelatedRequirements

For a control, the industry or regulatory framework requirements that are related to the control. The check for that control is aligned with these requirements.

Type: Array of strings

Pattern: .*\S.*

Required: No

Status

The result of a standards check.

The valid values for Status are as follows.

    • PASSED - Standards check passed for all evaluated resources.

    • WARNING - Some information is missing or this check is not supported for your configuration.

    • FAILED - Standards check failed for at least one evaluated resource.

    • NOT_AVAILABLE - Check could not be performed due to a service outage, API error, or because the result of the AWS Config evaluation was NOT_APPLICABLE. If the AWS Config evaluation result was NOT_APPLICABLE, then after 3 days, Security Hub automatically archives the finding.

Type: String

Valid Values: PASSED | WARNING | FAILED | NOT_AVAILABLE

Required: No

StatusReasons

For findings generated from controls, a list of reasons behind the value of Status. For the list of status reason codes and their meanings, see Standards-related information in the ASFF in the AWS Security Hub User Guide.

Type: Array of StatusReason objects

Required: No

See Also

For more information about using this API in one of the language-specific AWS SDKs, see the following: