The Perl Toolchain Summit needs more sponsors. If your company depends on Perl, please support this very important event.
 / 
Paws-0.39
River stage two • 9 direct dependents • 11 total dependents
57 ++
/ Paws::SecurityHub::AwsSecurityFinding

NAME

Paws::SecurityHub::AwsSecurityFinding

USAGE

This class represents one of two things:

Arguments in a call to a service

Use the attributes of this class as arguments to methods. You shouldn't make instances of this class. Each attribute should be used as a named argument in the calls that expect this type of object.

As an example, if Att1 is expected to be a Paws::SecurityHub::AwsSecurityFinding object:

  $service_obj->Method(Att1 => { AwsAccountId => $value, ..., WorkflowState => $value  });

Results returned from an API call

Use accessors for each attribute. If Att1 is expected to be an Paws::SecurityHub::AwsSecurityFinding object:

  $result = $service_obj->Method(...);
  $result->Att1->AwsAccountId

DESCRIPTION

Provides consistent format for the contents of the Security Hub-aggregated findings. AwsSecurityFinding format enables you to share findings between AWS security services and third-party solutions, and compliance checks.

A finding is a potential security issue generated either by AWS services (GuardDuty, Inspector, Macie) or by the integrated third-party solutions and compliance checks.

ATTRIBUTES

REQUIRED AwsAccountId => Str

  The AWS account ID in which a finding is generated.

Compliance => Paws::SecurityHub::Compliance

  This data type is exclusive to findings that are generated as the
result of a check run against a specific rule in a supported standard
(for example, AWS CIS Foundations). Contains compliance-related finding
details.

Confidence => Int

  A finding's confidence. Confidence is defined as the likelihood that a
finding accurately identifies the behavior or issue that it was
intended to identify. Confidence is scored on a 0-100 basis using a
ratio scale. 0 equates zero percent confidence and 100 equates to 100
percent confidence.

REQUIRED CreatedAt => Str

  An ISO8601-formatted timestamp that indicates when the potential
security issue captured by a finding was created by the security
findings provider.

Criticality => Int

  The level of importance assigned to the resources associated with the
finding. A score of 0 means the underlying resources have no
criticality, and a score of 100 is reserved for the most critical
resources.

Description => Str

  A finding's description.

FirstObservedAt => Str

  An ISO8601-formatted timestamp that indicates when the potential
security issue captured by a finding was first observed by the security
findings provider.

REQUIRED GeneratorId => Str

  This is the identifier for the solution-specific component (a discrete
unit of logic) that generated a finding. In various security findings
provider's solutions, this generator can be called a rule, a check, a
detector, a plug-in, etc.

REQUIRED Id => Str

  The security findings provider-specific identifier for a finding.

LastObservedAt => Str

  An ISO8601-formatted timestamp that indicates when the potential
security issue captured by a finding was most recently observed by the
security findings provider.

Malware => ArrayRef[Paws::SecurityHub::Malware]

  A list of malware related to a finding.

Network => Paws::SecurityHub::Network

  The details of network-related information about a finding.

Note => Paws::SecurityHub::Note

  A user-defined note added to a finding.

Process => Paws::SecurityHub::ProcessDetails

  The details of process-related information about a finding.

REQUIRED ProductArn => Str

  The ARN generated by Security Hub that uniquely identifies a
third-party company (security findings provider) once this provider's
product (solution that generates findings) is registered with Security
Hub.

ProductFields => Paws::SecurityHub::FieldMap

  A data type where security findings providers can include additional
solution-specific details that are not part of the defined
AwsSecurityFinding format.

RecordState => Str

  The record state of a finding.

RelatedFindings => ArrayRef[Paws::SecurityHub::RelatedFinding]

  A list of related findings.

Remediation => Paws::SecurityHub::Remediation

  An data type that describes the remediation options for a finding.

REQUIRED Resources => ArrayRef[Paws::SecurityHub::Resource]

  A set of resource data types that describe the resources to which the
finding refers.

REQUIRED SchemaVersion => Str

  The schema version for which a finding is formatted.

REQUIRED Severity => Paws::SecurityHub::Severity

  A finding's severity.

SourceUrl => Str

  A URL that links to a page about the current finding in the security
findings provider's solution.

ThreatIntelIndicators => ArrayRef[Paws::SecurityHub::ThreatIntelIndicator]

  Threat intel details related to a finding.

Title => Str

  A finding's title.

REQUIRED Types => ArrayRef[Str|Undef]

  One or more finding types in the format of
'namespace/category/classifier' that classify a finding.

Valid namespace values are: Software and Configuration Checks | TTPs | Effects | Unusual Behaviors | Sensitive Data Identifications

REQUIRED UpdatedAt => Str

  An ISO8601-formatted timestamp that indicates when the finding record
was last updated by the security findings provider.

UserDefinedFields => Paws::SecurityHub::FieldMap

  A list of name/value string pairs associated with the finding. These
are custom, user-defined fields added to a finding.

VerificationState => Str

  Indicates the veracity of a finding.

WorkflowState => Str

  The workflow state of a finding.

SEE ALSO

This class forms part of Paws, describing an object used in Paws::SecurityHub

BUGS and CONTRIBUTIONS

The source code is located here: https://github.com/pplu/aws-sdk-perl

Please report bugs to: https://github.com/pplu/aws-sdk-perl/issues