ResourceDetails - AWS Security Hub

ResourceDetails

Additional details about a resource related to a finding.

To provide the details, use the object that corresponds to the resource type. For example, if the resource type is AwsEc2Instance, then you use the AwsEc2Instance object to provide the details.

If the type-specific object does not contain all of the fields you want to populate, then you use the Other object to populate those additional fields.

You also use the Other object to populate the details when the selected type does not have a corresponding object.

Contents

AwsApiGatewayRestApi

Type: AwsApiGatewayRestApiDetails object

Required: No

AwsApiGatewayStage

Type: AwsApiGatewayStageDetails object

Required: No

AwsApiGatewayV2Api

Type: AwsApiGatewayV2ApiDetails object

Required: No

AwsApiGatewayV2Stage

Type: AwsApiGatewayV2StageDetails object

Required: No

AwsAutoScalingAutoScalingGroup

Details for an autoscaling group.

Type: AwsAutoScalingAutoScalingGroupDetails object

Required: No

AwsCertificateManagerCertificate

Type: AwsCertificateManagerCertificateDetails object

Required: No

AwsCloudFrontDistribution

Details about a CloudFront distribution.

Type: AwsCloudFrontDistributionDetails object

Required: No

AwsCloudTrailTrail

Type: AwsCloudTrailTrailDetails object

Required: No

AwsCodeBuildProject

Details for an AWS CodeBuild project.

Type: AwsCodeBuildProjectDetails object

Required: No

AwsDynamoDbTable

Details about a DynamoDB table.

Type: AwsDynamoDbTableDetails object

Required: No

AwsEc2Eip

Details about an Elastic IP address.

Type: AwsEc2EipDetails object

Required: No

AwsEc2Instance

Details about an Amazon EC2 instance related to a finding.

Type: AwsEc2InstanceDetails object

Required: No

AwsEc2NetworkInterface

Details for an Amazon EC2 network interface.

Type: AwsEc2NetworkInterfaceDetails object

Required: No

AwsEc2SecurityGroup

Details for an EC2 security group.

Type: AwsEc2SecurityGroupDetails object

Required: No

AwsEc2Volume

Details for an EC2 volume.

Type: AwsEc2VolumeDetails object

Required: No

AwsEc2Vpc

Details for an EC2 VPC.

Type: AwsEc2VpcDetails object

Required: No

AwsElasticsearchDomain

Details for an Elasticsearch domain.

Type: AwsElasticsearchDomainDetails object

Required: No

AwsElbLoadBalancer

Type: AwsElbLoadBalancerDetails object

Required: No

AwsElbv2LoadBalancer

Details about a load balancer.

Type: AwsElbv2LoadBalancerDetails object

Required: No

AwsIamAccessKey

Details about an IAM access key related to a finding.

Type: AwsIamAccessKeyDetails object

Required: No

AwsIamGroup

Type: AwsIamGroupDetails object

Required: No

AwsIamPolicy

Details about an IAM permissions policy.

Type: AwsIamPolicyDetails object

Required: No

AwsIamRole

Details about an IAM role.

Type: AwsIamRoleDetails object

Required: No

AwsIamUser

Details about an IAM user.

Type: AwsIamUserDetails object

Required: No

AwsKmsKey

Details about a KMS key.

Type: AwsKmsKeyDetails object

Required: No

AwsLambdaFunction

Details about a Lambda function.

Type: AwsLambdaFunctionDetails object

Required: No

AwsLambdaLayerVersion

Details for a Lambda layer version.

Type: AwsLambdaLayerVersionDetails object

Required: No

AwsRdsDbCluster

Details about an Amazon RDS database cluster.

Type: AwsRdsDbClusterDetails object

Required: No

AwsRdsDbClusterSnapshot

Details about an Amazon RDS database cluster snapshot.

Type: AwsRdsDbClusterSnapshotDetails object

Required: No

AwsRdsDbInstance

Details about an Amazon RDS database instance.

Type: AwsRdsDbInstanceDetails object

Required: No

AwsRdsDbSnapshot

Details about an Amazon RDS database snapshot.

Type: AwsRdsDbSnapshotDetails object

Required: No

AwsRedshiftCluster

Type: AwsRedshiftClusterDetails object

Required: No

AwsS3Bucket

Details about an Amazon S3 bucket related to a finding.

Type: AwsS3BucketDetails object

Required: No

AwsS3Object

Details about an Amazon S3 object related to a finding.

Type: AwsS3ObjectDetails object

Required: No

AwsSecretsManagerSecret

Details about a Secrets Manager secret.

Type: AwsSecretsManagerSecretDetails object

Required: No

AwsSnsTopic

Details about an SNS topic.

Type: AwsSnsTopicDetails object

Required: No

AwsSqsQueue

Details about an SQS queue.

Type: AwsSqsQueueDetails object

Required: No

AwsWafWebAcl

Details for a WAF WebACL.

Type: AwsWafWebAclDetails object

Required: No

Container

Details about a container resource related to a finding.

Type: ContainerDetails object

Required: No

Other

Details about a resource that are not available in a type-specific details object. Use the Other object in the following cases.

  • The type-specific object does not contain all of the fields that you want to populate. In this case, first use the type-specific object to populate those fields. Use the Other object to populate the fields that are missing from the type-specific object.

  • The resource type does not have a corresponding object. This includes resources for which the type is Other.

Type: String to string map

Key Pattern: .*\S.*

Value Pattern: .*\S.*

Required: No

See Also

For more information about using this API in one of the language-specific AWS SDKs, see the following: