ResourceDetails - AWS Security Hub

ResourceDetails

Additional details about a resource related to a finding.

To provide the details, use the object that corresponds to the resource type. For example, if the resource type is AwsEc2Instance, then you use the AwsEc2Instance object to provide the details.

If the type-specific object does not contain all of the fields you want to populate, then you use the Other object to populate those additional fields.

You also use the Other object to populate the details when the selected type does not have a corresponding object.

Contents

AwsApiGatewayRestApi

Provides information about a REST API in version 1 of Amazon API Gateway.

Type: AwsApiGatewayRestApiDetails object

Required: No

AwsApiGatewayStage

Provides information about a version 1 Amazon API Gateway stage.

Type: AwsApiGatewayStageDetails object

Required: No

AwsApiGatewayV2Api

Provides information about a version 2 API in Amazon API Gateway.

Type: AwsApiGatewayV2ApiDetails object

Required: No

AwsApiGatewayV2Stage

Provides information about a version 2 stage for Amazon API Gateway.

Type: AwsApiGatewayV2StageDetails object

Required: No

AwsAutoScalingAutoScalingGroup

Details for an autoscaling group.

Type: AwsAutoScalingAutoScalingGroupDetails object

Required: No

AwsAutoScalingLaunchConfiguration

Provides details about a launch configuration.

Type: AwsAutoScalingLaunchConfigurationDetails object

Required: No

AwsCertificateManagerCertificate

Provides details about an AWS Certificate Manager certificate.

Type: AwsCertificateManagerCertificateDetails object

Required: No

AwsCloudFrontDistribution

Details about a CloudFront distribution.

Type: AwsCloudFrontDistributionDetails object

Required: No

AwsCloudTrailTrail

Provides details about a CloudTrail trail.

Type: AwsCloudTrailTrailDetails object

Required: No

AwsCodeBuildProject

Details for an AWS CodeBuild project.

Type: AwsCodeBuildProjectDetails object

Required: No

AwsDynamoDbTable

Details about a DynamoDB table.

Type: AwsDynamoDbTableDetails object

Required: No

AwsEc2Eip

Details about an Elastic IP address.

Type: AwsEc2EipDetails object

Required: No

AwsEc2Instance

Details about an EC2 instance related to a finding.

Type: AwsEc2InstanceDetails object

Required: No

AwsEc2NetworkAcl

Details about an EC2 network access control list (ACL).

Type: AwsEc2NetworkAclDetails object

Required: No

AwsEc2NetworkInterface

Details for an EC2 network interface.

Type: AwsEc2NetworkInterfaceDetails object

Required: No

AwsEc2SecurityGroup

Details for an EC2 security group.

Type: AwsEc2SecurityGroupDetails object

Required: No

AwsEc2Subnet

Details about a subnet in Amazon EC2.

Type: AwsEc2SubnetDetails object

Required: No

AwsEc2Volume

Details for an EC2 volume.

Type: AwsEc2VolumeDetails object

Required: No

AwsEc2Vpc

Details for an EC2 VPC.

Type: AwsEc2VpcDetails object

Required: No

AwsEc2VpnConnection

Details about an EC2 VPN connection.

Type: AwsEc2VpnConnectionDetails object

Required: No

AwsEcrContainerImage

information about an Amazon ECR image.

Type: AwsEcrContainerImageDetails object

Required: No

AwsEcsCluster

Details about an ECS cluster.

Type: AwsEcsClusterDetails object

Required: No

AwsEcsService

Details about a service within an ECS cluster.

Type: AwsEcsServiceDetails object

Required: No

AwsEcsTaskDefinition

Details about a task definition. A task definition describes the container and volume definitions of an Amazon Elastic Container Service task.

Type: AwsEcsTaskDefinitionDetails object

Required: No

AwsElasticBeanstalkEnvironment

Details about an Elastic Beanstalk environment.

Type: AwsElasticBeanstalkEnvironmentDetails object

Required: No

AwsElasticsearchDomain

Details for an Elasticsearch domain.

Type: AwsElasticsearchDomainDetails object

Required: No

AwsElbLoadBalancer

Contains details about a Classic Load Balancer.

Type: AwsElbLoadBalancerDetails object

Required: No

AwsElbv2LoadBalancer

Details about a load balancer.

Type: AwsElbv2LoadBalancerDetails object

Required: No

AwsIamAccessKey

Details about an IAM access key related to a finding.

Type: AwsIamAccessKeyDetails object

Required: No

AwsIamGroup

Contains details about an IAM group.

Type: AwsIamGroupDetails object

Required: No

AwsIamPolicy

Details about an IAM permissions policy.

Type: AwsIamPolicyDetails object

Required: No

AwsIamRole

Details about an IAM role.

Type: AwsIamRoleDetails object

Required: No

AwsIamUser

Details about an IAM user.

Type: AwsIamUserDetails object

Required: No

AwsKmsKey

Details about an AWS KMS key.

Type: AwsKmsKeyDetails object

Required: No

AwsLambdaFunction

Details about a Lambda function.

Type: AwsLambdaFunctionDetails object

Required: No

AwsLambdaLayerVersion

Details for a Lambda layer version.

Type: AwsLambdaLayerVersionDetails object

Required: No

AwsRdsDbCluster

Details about an Amazon RDS database cluster.

Type: AwsRdsDbClusterDetails object

Required: No

AwsRdsDbClusterSnapshot

Details about an Amazon RDS database cluster snapshot.

Type: AwsRdsDbClusterSnapshotDetails object

Required: No

AwsRdsDbInstance

Details about an Amazon RDS database instance.

Type: AwsRdsDbInstanceDetails object

Required: No

AwsRdsDbSnapshot

Details about an Amazon RDS database snapshot.

Type: AwsRdsDbSnapshotDetails object

Required: No

AwsRdsEventSubscription

Details about an RDS event notification subscription.

Type: AwsRdsEventSubscriptionDetails object

Required: No

AwsRedshiftCluster

Contains details about an Amazon Redshift cluster.

Type: AwsRedshiftClusterDetails object

Required: No

AwsS3AccountPublicAccessBlock

Details about the Amazon S3 Public Access Block configuration for an account.

Type: AwsS3AccountPublicAccessBlockDetails object

Required: No

AwsS3Bucket

Details about an S3 bucket related to a finding.

Type: AwsS3BucketDetails object

Required: No

AwsS3Object

Details about an S3 object related to a finding.

Type: AwsS3ObjectDetails object

Required: No

AwsSecretsManagerSecret

Details about a Secrets Manager secret.

Type: AwsSecretsManagerSecretDetails object

Required: No

AwsSnsTopic

Details about an SNS topic.

Type: AwsSnsTopicDetails object

Required: No

AwsSqsQueue

Details about an SQS queue.

Type: AwsSqsQueueDetails object

Required: No

AwsSsmPatchCompliance

Provides information about the state of a patch on an instance based on the patch baseline that was used to patch the instance.

Type: AwsSsmPatchComplianceDetails object

Required: No

AwsWafWebAcl

Details for an AWS WAF WebACL.

Type: AwsWafWebAclDetails object

Required: No

Container

Details about a container resource related to a finding.

Type: ContainerDetails object

Required: No

Other

Details about a resource that are not available in a type-specific details object. Use the Other object in the following cases.

  • The type-specific object does not contain all of the fields that you want to populate. In this case, first use the type-specific object to populate those fields. Use the Other object to populate the fields that are missing from the type-specific object.

  • The resource type does not have a corresponding object. This includes resources for which the type is Other.

Type: String to string map

Key Pattern: .*\S.*

Value Pattern: .*\S.*

Required: No

See Also

For more information about using this API in one of the language-specific AWS SDKs, see the following: