Crate rusoto_securityhub 

Security Hub provides you with a comprehensive view of the security state of your AWS environment and resources. It also provides you with the readiness status of your environment based on controls from supported security standards. Security Hub collects security data from AWS accounts, services, and integrated third-party products and helps you analyze security trends in your environment to identify the highest priority security issues. For more information about Security Hub, see the AWS Security Hub User Guide .

When you use operations in the Security Hub API, the requests are executed only in the AWS Region that is currently active or in the specific AWS Region that you specify in your request. Any configuration or settings change that results from the operation is applied only to that Region. To make the same change in other Regions, execute the same command for each Region to apply the change to.

For example, if your Region is set to us-west-2, when you use CreateMembers to add a member account to Security Hub, the association of the member account with the administrator account is created only in the us-west-2 Region. Security Hub must be enabled for the member account in the same Region that the invitation was sent from.

The following throttling limits apply to using Security Hub API operations.

• BatchEnableStandards - RateLimit of 1 request per second, BurstLimit of 1 request per second.

• GetFindings - RateLimit of 3 requests per second. BurstLimit of 6 requests per second.

• UpdateFindings - RateLimit of 1 request per second. BurstLimit of 5 requests per second.

• UpdateStandardsControl - RateLimit of 1 request per second, BurstLimit of 5 requests per second.

• All other operations - RateLimit of 10 requests per second. BurstLimit of 30 requests per second.

If you’re using the service, you’re probably looking for SecurityHubClient and SecurityHub.

Structs

AcceptAdministratorInvitationRequest

AcceptAdministratorInvitationResponse

AcceptInvitationRequest

AcceptInvitationResponse

AccountDetails

The details of an AWS account.

Action

Provides details about one of the following actions that affects or that was taken on a resource:

• A remote IP address issued an AWS API call

• A DNS request was received

• A remote IP address attempted to connect to an EC2 instance

• A remote IP address attempted a port probe on an EC2 instance

ActionLocalIpDetails

Provides information about the IP address where the scanned port is located.

ActionLocalPortDetails

For NetworkConnectionAction and PortProbeDetails, LocalPortDetails provides information about the local port that was involved in the action.

ActionRemoteIpDetails

For AwsApiAction, NetworkConnectionAction, and PortProbeAction, RemoteIpDetails provides information about the remote IP address that was involved in the action.

ActionRemotePortDetails

Provides information about the remote port that was involved in an attempted network connection.

ActionTarget

An ActionTarget object.

AdminAccount

Represents a Security Hub administrator account designated by an organization management account.

AvailabilityZone

Information about an Availability Zone.

AwsApiCallAction

Provided if ActionType is AWS_API_CALL. It provides details about the API call that was detected.

AwsApiCallActionDomainDetails

Provided if CallerType is domain. It provides information about the DNS domain that issued the API call.

AwsApiGatewayAccessLogSettings

Contains information about settings for logging access for the stage.

AwsApiGatewayCanarySettings

Contains information about settings for canary deployment in the stage.

AwsApiGatewayEndpointConfiguration

Contains information about the endpoints for the API.

AwsApiGatewayMethodSettings

Defines settings for a method for the stage.

AwsApiGatewayRestApiDetails

Contains information about a REST API in version 1 of Amazon API Gateway.

AwsApiGatewayStageDetails

Provides information about a version 1 Amazon API Gateway stage.

AwsApiGatewayV2ApiDetails

Contains information about a version 2 API in Amazon API Gateway.

AwsApiGatewayV2RouteSettings

Contains route settings for a stage.

AwsApiGatewayV2StageDetails

Contains information about a version 2 stage for Amazon API Gateway.

AwsAutoScalingAutoScalingGroupDetails

Provides details about an auto scaling group.

AwsCertificateManagerCertificateDetails

Provides details about an AWS Certificate Manager certificate.

AwsCertificateManagerCertificateDomainValidationOption

Contains information about one of the following:

• The initial validation of each domain name that occurs as a result of the RequestCertificate request

• The validation of each domain name in the certificate, as it pertains to AWS Certificate Manager managed renewal

AwsCertificateManagerCertificateExtendedKeyUsage

Contains information about an extended key usage X.509 v3 extension object.

AwsCertificateManagerCertificateKeyUsage

Contains information about a key usage X.509 v3 extension object.

AwsCertificateManagerCertificateOptions

Contains other options for the certificate.

AwsCertificateManagerCertificateRenewalSummary

Contains information about the AWS Certificate Manager managed renewal for an AMAZON_ISSUED certificate.

AwsCertificateManagerCertificateResourceRecord

Provides details about the CNAME record that is added to the DNS database for domain validation.

AwsCloudFrontDistributionCacheBehavior

Information about a cache behavior for the distribution.

AwsCloudFrontDistributionCacheBehaviors

Provides information about caching for the distribution.

AwsCloudFrontDistributionDefaultCacheBehavior

Contains information about the default cache configuration for the distribution.

AwsCloudFrontDistributionDetails

A distribution configuration.

AwsCloudFrontDistributionLogging

A complex type that controls whether access logs are written for the distribution.

AwsCloudFrontDistributionOriginGroup

Information about an origin group for the distribution.

AwsCloudFrontDistributionOriginGroupFailover

Provides information about when an origin group fails over.

AwsCloudFrontDistributionOriginGroupFailoverStatusCodes

The status codes that cause an origin group to fail over.

AwsCloudFrontDistributionOriginGroups

Provides information about origin groups that are associated with the distribution.

AwsCloudFrontDistributionOriginItem

A complex type that describes the Amazon S3 bucket, HTTP server (for example, a web server), Amazon Elemental MediaStore, or other server from which CloudFront gets your files.

AwsCloudFrontDistributionOriginS3OriginConfig

Information about an origin that is an S3 bucket that is not configured with static website hosting.

AwsCloudFrontDistributionOrigins

A complex type that contains information about origins and origin groups for this distribution.

AwsCloudTrailTrailDetails

Provides details about a CloudTrail trail.

AwsCodeBuildProjectDetails

Information about an AWS CodeBuild project.

AwsCodeBuildProjectEnvironment

Information about the build environment for this build project.

AwsCodeBuildProjectEnvironmentRegistryCredential

The credentials for access to a private registry.

AwsCodeBuildProjectSource

Information about the build input source code for this build project.

AwsCodeBuildProjectVpcConfig

Information about the VPC configuration that AWS CodeBuild accesses.

AwsCorsConfiguration

Contains the cross-origin resource sharing (CORS) configuration for the API. CORS is only supported for HTTP APIs.

AwsDynamoDbTableAttributeDefinition

Contains a definition of an attribute for the table.

AwsDynamoDbTableBillingModeSummary

Provides information about the billing for read/write capacity on the table.

AwsDynamoDbTableDetails

Provides details about a DynamoDB table.

AwsDynamoDbTableGlobalSecondaryIndex

Information abut a global secondary index for the table.

AwsDynamoDbTableKeySchema

A component of the key schema for the DynamoDB table, a global secondary index, or a local secondary index.

AwsDynamoDbTableLocalSecondaryIndex

Information about a local secondary index for a DynamoDB table.

AwsDynamoDbTableProjection

For global and local secondary indexes, identifies the attributes that are copied from the table into the index.

AwsDynamoDbTableProvisionedThroughput

Information about the provisioned throughput for the table or for a global secondary index.

AwsDynamoDbTableProvisionedThroughputOverride

Replica-specific configuration for the provisioned throughput.

AwsDynamoDbTableReplica

Information about a replica of a DynamoDB table.

AwsDynamoDbTableReplicaGlobalSecondaryIndex

Information about a global secondary index for a DynamoDB table replica.

AwsDynamoDbTableRestoreSummary

Information about the restore for the table.

AwsDynamoDbTableSseDescription

Information about the server-side encryption for the table.

AwsDynamoDbTableStreamSpecification

The current DynamoDB Streams configuration for the table.

AwsEc2EipDetails

Information about an Elastic IP address.

AwsEc2InstanceDetails

The details of an EC2 instance.

AwsEc2InstanceNetworkInterfacesDetails

Identifies a network interface for the EC2 instance.

AwsEc2NetworkAclAssociation

An association between the network ACL and a subnet.

AwsEc2NetworkAclDetails

Contains details about an EC2 network access control list (ACL).

AwsEc2NetworkAclEntry

A rule for the network ACL. Each rule allows or denies access based on the IP address, traffic direction, port, and protocol.

AwsEc2NetworkInterfaceAttachment

Information about the network interface attachment.

AwsEc2NetworkInterfaceDetails

Details about the network interface

AwsEc2NetworkInterfaceIpV6AddressDetail

Provides information about an IPV6 address that is associated with the network interface.

AwsEc2NetworkInterfacePrivateIpAddressDetail

Provides information about a private IPv4 address that is with the network interface.

AwsEc2NetworkInterfaceSecurityGroup

A security group associated with the network interface.

AwsEc2SecurityGroupDetails

Details about an EC2 security group.

AwsEc2SecurityGroupIpPermission

An IP permission for an EC2 security group.

AwsEc2SecurityGroupIpRange

A range of IPv4 addresses.

AwsEc2SecurityGroupIpv6Range

A range of IPv6 addresses.

AwsEc2SecurityGroupPrefixListId

A prefix list ID.

AwsEc2SecurityGroupUserIdGroupPair

A relationship between a security group and a user.

AwsEc2SubnetDetails

Contains information about a subnet in EC2.

AwsEc2VolumeAttachment

An attachment to an AWS EC2 volume.

AwsEc2VolumeDetails

Details about an EC2 volume.

AwsEc2VpcDetails

Details about an EC2 VPC.

AwsEcsClusterClusterSettingsDetails

Indicates whether to enable CloudWatch Container Insights for the ECS cluster.

AwsEcsClusterConfigurationDetails

The run command configuration for the cluster.

AwsEcsClusterConfigurationExecuteCommandConfigurationDetails

Contains the run command configuration for the cluster.

AwsEcsClusterConfigurationExecuteCommandConfigurationLogConfigurationDetails

The log configuration for the results of the run command actions.

AwsEcsClusterDefaultCapacityProviderStrategyDetails

The default capacity provider strategy for the cluster. The default capacity provider strategy is used when services or tasks are run without a specified launch type or capacity provider strategy.

AwsEcsClusterDetails

provides details about an ECS cluster.

AwsEcsTaskDefinitionContainerDefinitionsDependsOnDetails

A dependency that is defined for container startup and shutdown.

AwsEcsTaskDefinitionContainerDefinitionsDetails

A container definition that describes a container in the task.

AwsEcsTaskDefinitionContainerDefinitionsEnvironmentDetails

An environment variable to pass to the container.

AwsEcsTaskDefinitionContainerDefinitionsEnvironmentFilesDetails

A file that contain environment variables to pass to a container.

AwsEcsTaskDefinitionContainerDefinitionsExtraHostsDetails

A hostname and IP address mapping to append to the /etc/hosts file on the container.

AwsEcsTaskDefinitionContainerDefinitionsFirelensConfigurationDetails

The FireLens configuration for the container. The configuration specifies and configures a log router for container logs.

AwsEcsTaskDefinitionContainerDefinitionsHealthCheckDetails

The container health check command and associated configuration parameters for the container.

AwsEcsTaskDefinitionContainerDefinitionsLinuxParametersCapabilitiesDetails

The Linux capabilities for the container that are added to or dropped from the default configuration provided by Docker.

AwsEcsTaskDefinitionContainerDefinitionsLinuxParametersDetails

>Linux-specific modifications that are applied to the container, such as Linux kernel capabilities.

AwsEcsTaskDefinitionContainerDefinitionsLinuxParametersDevicesDetails

A host device to expose to the container.

AwsEcsTaskDefinitionContainerDefinitionsLinuxParametersTmpfsDetails

The container path, mount options, and size (in MiB) of a tmpfs mount.

AwsEcsTaskDefinitionContainerDefinitionsLogConfigurationDetails

The log configuration specification for the container.

AwsEcsTaskDefinitionContainerDefinitionsLogConfigurationSecretOptionsDetails

A secret to pass to the log configuration.

AwsEcsTaskDefinitionContainerDefinitionsMountPointsDetails

A mount point for the data volumes in the container.

AwsEcsTaskDefinitionContainerDefinitionsPortMappingsDetails

A port mapping for the container.

AwsEcsTaskDefinitionContainerDefinitionsRepositoryCredentialsDetails

The private repository authentication credentials to use.

AwsEcsTaskDefinitionContainerDefinitionsResourceRequirementsDetails

A resource to assign to a container.

AwsEcsTaskDefinitionContainerDefinitionsSecretsDetails

A secret to pass to the container.

AwsEcsTaskDefinitionContainerDefinitionsSystemControlsDetails

A namespaced kernel parameter to set in the container.

AwsEcsTaskDefinitionContainerDefinitionsUlimitsDetails

A ulimit to set in the container.

AwsEcsTaskDefinitionContainerDefinitionsVolumesFromDetails

A data volume to mount from another container.

AwsEcsTaskDefinitionDetails

details about a task definition. A task definition describes the container and volume definitions of an Amazon Elastic Container Service task.

AwsEcsTaskDefinitionInferenceAcceleratorsDetails

An Elastic Inference accelerator to use for the containers in the task.

AwsEcsTaskDefinitionPlacementConstraintsDetails

A placement constraint object to use for tasks.

AwsEcsTaskDefinitionProxyConfigurationDetails

The configuration details for the App Mesh proxy.

AwsEcsTaskDefinitionProxyConfigurationProxyConfigurationPropertiesDetails

A network configuration parameter to provide to the Container Network Interface (CNI) plugin.

AwsEcsTaskDefinitionVolumesDetails

A data volume to mount from another container.

AwsEcsTaskDefinitionVolumesDockerVolumeConfigurationDetails

Information about a Docker volume.

AwsEcsTaskDefinitionVolumesEfsVolumeConfigurationAuthorizationConfigDetails

AwsEcsTaskDefinitionVolumesEfsVolumeConfigurationDetails

Information about the Amazon Elastic File System file system that is used for task storage.

AwsEcsTaskDefinitionVolumesHostDetails

Information about a bind mount host volume.

AwsElasticBeanstalkEnvironmentDetails

Contains details about an Elastic Beanstalk environment.

AwsElasticBeanstalkEnvironmentEnvironmentLink

Contains information about a link to another environment that is in the same group.

AwsElasticBeanstalkEnvironmentOptionSetting

A configuration option setting for the environment.

AwsElasticBeanstalkEnvironmentTier

Contains information about the tier of the environment.

AwsElasticsearchDomainDetails

Information about an Elasticsearch domain.

AwsElasticsearchDomainDomainEndpointOptions

Additional options for the domain endpoint, such as whether to require HTTPS for all traffic.

AwsElasticsearchDomainEncryptionAtRestOptions

Details about the configuration for encryption at rest.

AwsElasticsearchDomainLogPublishingOptions

configures the CloudWatch Logs to publish for the Elasticsearch domain.

AwsElasticsearchDomainLogPublishingOptionsLogConfig

The log configuration.

AwsElasticsearchDomainNodeToNodeEncryptionOptions

Details about the configuration for node-to-node encryption.

AwsElasticsearchDomainServiceSoftwareOptions

Information about the state of the domain relative to the latest service software.

AwsElasticsearchDomainVPCOptions

Information that Amazon ES derives based on VPCOptions for the domain.

AwsElbAppCookieStickinessPolicy

Contains information about a stickiness policy that was created using CreateAppCookieStickinessPolicy.

AwsElbLbCookieStickinessPolicy

Contains information about a stickiness policy that was created using CreateLBCookieStickinessPolicy.

AwsElbLoadBalancerAccessLog

Contains information about the access log configuration for the load balancer.

AwsElbLoadBalancerAttributes

Contains attributes for the load balancer.

AwsElbLoadBalancerBackendServerDescription

Provides information about the configuration of an EC2 instance for the load balancer.

AwsElbLoadBalancerConnectionDraining

Contains information about the connection draining configuration for the load balancer.

AwsElbLoadBalancerConnectionSettings

Contains connection settings for the load balancer.

AwsElbLoadBalancerCrossZoneLoadBalancing

Contains cross-zone load balancing settings for the load balancer.

AwsElbLoadBalancerDetails

Contains details about a Classic Load Balancer.

AwsElbLoadBalancerHealthCheck

Contains information about the health checks that are conducted on the load balancer.

AwsElbLoadBalancerInstance

Provides information about an EC2 instance for a load balancer.

AwsElbLoadBalancerListener

Information about a load balancer listener.

AwsElbLoadBalancerListenerDescription

Lists the policies that are enabled for a load balancer listener.

AwsElbLoadBalancerPolicies

Contains information about the policies for a load balancer.

AwsElbLoadBalancerSourceSecurityGroup

Contains information about the security group for the load balancer.

AwsElbv2LoadBalancerDetails

Information about a load balancer.

AwsIamAccessKeyDetails

IAM access key details related to a finding.

AwsIamAccessKeySessionContext

Provides information about the session that the key was used for.

AwsIamAccessKeySessionContextAttributes

Attributes of the session that the key was used for.

AwsIamAccessKeySessionContextSessionIssuer

Information about the entity that created the session.

AwsIamAttachedManagedPolicy

A managed policy that is attached to an IAM principal.

AwsIamGroupDetails

Contains details about an IAM group.

AwsIamGroupPolicy

A managed policy that is attached to the IAM group.

AwsIamInstanceProfile

Information about an instance profile.

AwsIamInstanceProfileRole

Information about a role associated with an instance profile.

AwsIamPermissionsBoundary

Information about the policy used to set the permissions boundary for an IAM principal.

AwsIamPolicyDetails

Represents an IAM permissions policy.

AwsIamPolicyVersion

A version of an IAM policy.

AwsIamRoleDetails

Contains information about an IAM role, including all of the role's policies.

AwsIamRolePolicy

An inline policy that is embedded in the role.

AwsIamUserDetails

Information about an IAM user.

AwsIamUserPolicy

Information about an inline policy that is embedded in the user.

AwsKmsKeyDetails

Contains metadata about a customer master key (CMK).

AwsLambdaFunctionCode

The code for the Lambda function. You can specify either an object in Amazon S3, or upload a deployment package directly.

AwsLambdaFunctionDeadLetterConfig

The dead-letter queue for failed asynchronous invocations.

AwsLambdaFunctionDetails

Details about a function's configuration.

AwsLambdaFunctionEnvironment

A function's environment variable settings.

AwsLambdaFunctionEnvironmentError

Error messages for environment variables that could not be applied.

AwsLambdaFunctionLayer

An AWS Lambda layer.

AwsLambdaFunctionTracingConfig

The function's AWS X-Ray tracing configuration.

AwsLambdaFunctionVpcConfig

The VPC security groups and subnets that are attached to a Lambda function.

AwsLambdaLayerVersionDetails

Details about a Lambda layer version.

AwsRdsDbClusterAssociatedRole

An IAM role that is associated with the Amazon RDS DB cluster.

AwsRdsDbClusterDetails

Information about an Amazon RDS DB cluster.

AwsRdsDbClusterMember

Information about an instance in the DB cluster.

AwsRdsDbClusterOptionGroupMembership

Information about an option group membership for a DB cluster.

AwsRdsDbClusterSnapshotDetails

Information about an Amazon RDS DB cluster snapshot.

AwsRdsDbDomainMembership

Information about an Active Directory domain membership record associated with the DB instance.

AwsRdsDbInstanceAssociatedRole

An AWS Identity and Access Management (IAM) role associated with the DB instance.

AwsRdsDbInstanceDetails

Contains the details of an Amazon RDS DB instance.

AwsRdsDbInstanceEndpoint

Specifies the connection endpoint.

AwsRdsDbInstanceVpcSecurityGroup

A VPC security groups that the DB instance belongs to.

AwsRdsDbOptionGroupMembership

An option group membership.

AwsRdsDbParameterGroup

Provides information about a parameter group for a DB instance.

AwsRdsDbPendingModifiedValues

Changes to a DB instance that are currently pending.

AwsRdsDbProcessorFeature

A processor feature.

AwsRdsDbSnapshotDetails

Provides details about an Amazon RDS DB cluster snapshot.

AwsRdsDbStatusInfo

Information about the status of a read replica.

AwsRdsDbSubnetGroup

Information about the subnet group for the database instance.

AwsRdsDbSubnetGroupSubnet

Information about a subnet in a subnet group.

AwsRdsDbSubnetGroupSubnetAvailabilityZone

An Availability Zone for a subnet in a subnet group.

AwsRdsPendingCloudWatchLogsExports

Identifies the log types to enable and disable.

AwsRedshiftClusterClusterNode

A node in an Amazon Redshift cluster.

AwsRedshiftClusterClusterParameterGroup

A cluster parameter group that is associated with an Amazon Redshift cluster.

AwsRedshiftClusterClusterParameterStatus

The status of a parameter in a cluster parameter group for an Amazon Redshift cluster.

AwsRedshiftClusterClusterSecurityGroup

A security group that is associated with the cluster.

AwsRedshiftClusterClusterSnapshotCopyStatus

Information about a cross-Region snapshot copy.

AwsRedshiftClusterDeferredMaintenanceWindow

A time windows during which maintenance was deferred for an Amazon Redshift cluster.

AwsRedshiftClusterDetails

Details about an Amazon Redshift cluster.

AwsRedshiftClusterElasticIpStatus

The status of the elastic IP (EIP) address for an Amazon Redshift cluster.

AwsRedshiftClusterEndpoint

The connection endpoint for an Amazon Redshift cluster.

AwsRedshiftClusterHsmStatus

Information about whether an Amazon Redshift cluster finished applying any hardware changes to security module (HSM) settings that were specified in a modify cluster command.

AwsRedshiftClusterIamRole

An IAM role that the cluster can use to access other AWS services.

AwsRedshiftClusterPendingModifiedValues

Changes to the Amazon Redshift cluster that are currently pending.

AwsRedshiftClusterResizeInfo

Information about the resize operation for the cluster.

AwsRedshiftClusterRestoreStatus

Information about the status of a cluster restore action. It only applies if the cluster was created by restoring a snapshot.

AwsRedshiftClusterVpcSecurityGroup

A VPC security group that the cluster belongs to, if the cluster is in a VPC.

AwsS3AccountPublicAccessBlockDetails

provides information about the Amazon S3 Public Access Block configuration for accounts.

AwsS3BucketBucketLifecycleConfigurationDetails

The lifecycle configuration for the objects in the S3 bucket.

AwsS3BucketBucketLifecycleConfigurationRulesAbortIncompleteMultipartUploadDetails

Information about what Amazon S3 does when a multipart upload is incomplete.

AwsS3BucketBucketLifecycleConfigurationRulesDetails

Configuration for a lifecycle rule.

AwsS3BucketBucketLifecycleConfigurationRulesFilterDetails

Identifies the objects that a rule applies to.

AwsS3BucketBucketLifecycleConfigurationRulesFilterPredicateDetails

The configuration for the filter.

AwsS3BucketBucketLifecycleConfigurationRulesFilterPredicateOperandsDetails

A value to use for the filter.

AwsS3BucketBucketLifecycleConfigurationRulesFilterPredicateOperandsTagDetails

A tag that is assigned to matching objects.

AwsS3BucketBucketLifecycleConfigurationRulesFilterPredicateTagDetails

A tag filter.

AwsS3BucketBucketLifecycleConfigurationRulesNoncurrentVersionTransitionsDetails

A transition rule that describes when noncurrent objects transition to a specified storage class.

AwsS3BucketBucketLifecycleConfigurationRulesTransitionsDetails

A rule for when objects transition to specific storage classes.

AwsS3BucketDetails

The details of an Amazon S3 bucket.

AwsS3BucketServerSideEncryptionByDefault

Specifies the default server-side encryption to apply to new objects in the bucket.

AwsS3BucketServerSideEncryptionConfiguration

The encryption configuration for the S3 bucket.

AwsS3BucketServerSideEncryptionRule

An encryption rule to apply to the S3 bucket.

AwsS3ObjectDetails

Details about an Amazon S3 object.

AwsSecretsManagerSecretDetails

Details about an AWS Secrets Manager secret.

AwsSecretsManagerSecretRotationRules

Defines the rotation schedule for the secret.

AwsSecurityFinding

Provides consistent format for the contents of the Security Hub-aggregated findings. AwsSecurityFinding format enables you to share findings between AWS security services and third-party solutions, and security standards checks.

A finding is a potential security issue generated either by AWS services (Amazon GuardDuty, Amazon Inspector, and Amazon Macie) or by the integrated third-party solutions and standards checks.

AwsSecurityFindingFilters

A collection of attributes that are applied to all active Security Hub-aggregated findings and that result in a subset of findings that are included in this insight.

You can filter by up to 10 finding attributes. For each attribute, you can provide up to 20 filter values.

AwsSecurityFindingIdentifier

Identifies a finding to update using BatchUpdateFindings.

AwsSnsTopicDetails

A wrapper type for the topic's ARN.

AwsSnsTopicSubscription

A wrapper type for the attributes of an Amazon SNS subscription.

AwsSqsQueueDetails

Data about a queue.

AwsSsmComplianceSummary

Provides the details about the compliance status for a patch.

AwsSsmPatch

Provides details about the compliance for a patch.

AwsSsmPatchComplianceDetails

Provides information about the state of a patch on an instance based on the patch baseline that was used to patch the instance.

AwsWafWebAclDetails

Details about a WAF WebACL.

AwsWafWebAclRule

Details for a rule in a WAF WebACL.

BatchDisableStandardsRequest

BatchDisableStandardsResponse

BatchEnableStandardsRequest

BatchEnableStandardsResponse

BatchImportFindingsRequest

BatchImportFindingsResponse

BatchUpdateFindingsRequest

BatchUpdateFindingsResponse

BatchUpdateFindingsUnprocessedFinding

A finding from a BatchUpdateFindings request that Security Hub was unable to update.

Cell

An occurrence of sensitive data detected in a Microsoft Excel workbook, comma-separated value (CSV) file, or tab-separated value (TSV) file.

CidrBlockAssociation

An IPv4 CIDR block association.

City

Information about a city.

ClassificationResult

Details about the sensitive data that was detected on the resource.

ClassificationStatus

Provides details about the current status of the sensitive data detection.

Compliance

Contains finding details that are specific to control-based findings. Only returned for findings generated from controls.

ContainerDetails

Container details related to a finding.

Country

Information about a country.

CreateActionTargetRequest

CreateActionTargetResponse

CreateInsightRequest

CreateInsightResponse

CreateMembersRequest

CreateMembersResponse

CustomDataIdentifiersDetections

The list of detected instances of sensitive data.

CustomDataIdentifiersResult

Contains an instance of sensitive data that was detected by a customer-defined identifier.

Cvss

CVSS scores from the advisory related to the vulnerability.

DataClassificationDetails

Provides details about sensitive data that was detected on a resource.

DateFilter

A date filter for querying findings.

DateRange

A date range for the date filter.

DeclineInvitationsRequest

DeclineInvitationsResponse

DeleteActionTargetRequest

DeleteActionTargetResponse

DeleteInsightRequest

DeleteInsightResponse

DeleteInvitationsRequest

DeleteInvitationsResponse

DeleteMembersRequest

DeleteMembersResponse

DescribeActionTargetsRequest

DescribeActionTargetsResponse

DescribeHubRequest

DescribeHubResponse

DescribeOrganizationConfigurationRequest

DescribeOrganizationConfigurationResponse

DescribeProductsRequest

DescribeProductsResponse

DescribeStandardsControlsRequest

DescribeStandardsControlsResponse

DescribeStandardsRequest

DescribeStandardsResponse

DisableImportFindingsForProductRequest

DisableImportFindingsForProductResponse

DisableOrganizationAdminAccountRequest

DisableOrganizationAdminAccountResponse

DisableSecurityHubRequest

DisableSecurityHubResponse

DisassociateFromAdministratorAccountRequest

DisassociateFromAdministratorAccountResponse

DisassociateFromMasterAccountRequest

DisassociateFromMasterAccountResponse

DisassociateMembersRequest

DisassociateMembersResponse

DnsRequestAction

Provided if ActionType is DNS_REQUEST. It provides details about the DNS request that was detected.

EnableImportFindingsForProductRequest

EnableImportFindingsForProductResponse

EnableOrganizationAdminAccountRequest

EnableOrganizationAdminAccountResponse

EnableSecurityHubRequest

EnableSecurityHubResponse

FindingProviderFields

In a BatchImportFindings request, finding providers use FindingProviderFields to provide and update values for confidence, criticality, related findings, severity, and types.

FindingProviderSeverity

The severity assigned to the finding by the finding provider.

GeoLocation

Provides the latitude and longitude coordinates of a location.

GetAdministratorAccountRequest

GetAdministratorAccountResponse

GetEnabledStandardsRequest

GetEnabledStandardsResponse

GetFindingsRequest

GetFindingsResponse

GetInsightResultsRequest

GetInsightResultsResponse

GetInsightsRequest

GetInsightsResponse

GetInvitationsCountRequest

GetInvitationsCountResponse

GetMasterAccountRequest

GetMasterAccountResponse

GetMembersRequest

GetMembersResponse

IcmpTypeCode

An Internet Control Message Protocol (ICMP) type and code.

ImportFindingsError

The list of the findings that cannot be imported. For each finding, the list provides the error.

Insight

Contains information about a Security Hub insight.

InsightResultValue

The insight result values returned by the GetInsightResults operation.

InsightResults

The insight results returned by the GetInsightResults operation.

Invitation

Details about an invitation.

InviteMembersRequest

InviteMembersResponse

IpFilter

The IP filter for querying findings.

IpOrganizationDetails

Provides information about an internet provider.

Ipv6CidrBlockAssociation

An IPV6 CIDR block association.

KeywordFilter

A keyword filter for querying findings.

ListEnabledProductsForImportRequest

ListEnabledProductsForImportResponse

ListInvitationsRequest

ListInvitationsResponse

ListMembersRequest

ListMembersResponse

ListOrganizationAdminAccountsRequest

ListOrganizationAdminAccountsResponse

ListTagsForResourceRequest

ListTagsForResourceResponse

LoadBalancerState

Information about the state of the load balancer.

Malware

A list of malware related to a finding.

MapFilter

A map filter for querying findings. Each map filter provides the field to check, the value to look for, and the comparison operator.

Member

The details about a member account.

Network

The details of network-related information about a finding.

NetworkConnectionAction

Provided if ActionType is NETWORK_CONNECTION. It provides details about the attempted network connection that was detected.

NetworkHeader

Details about a network path component that occurs before or after the current component.

NetworkPathComponent

Information about a network path component.

NetworkPathComponentDetails

Information about the destination of the next component in the network path.

Note

A user-defined note added to a finding.

NoteUpdate

The updated note.

NumberFilter

A number filter for querying findings.

Occurrences

The detected occurrences of sensitive data.

Page

An occurrence of sensitive data in an Adobe Portable Document Format (PDF) file.

PatchSummary

Provides an overview of the patch compliance status for an instance against a selected compliance standard.

PortProbeAction

Provided if ActionType is PORT_PROBE. It provides details about the attempted port probe that was detected.

PortProbeDetail

A port scan that was part of the port probe. For each scan, PortProbeDetails provides information about the local IP address and port that were scanned, and the remote IP address that the scan originated from.

PortRange

A range of ports.

PortRangeFromTo

A range of ports.

ProcessDetails

The details of process-related information about a finding.

Product

Contains details about a product.

Range

Identifies where the sensitive data begins and ends.

Recommendation

A recommendation on how to remediate the issue identified in a finding.

Record

An occurrence of sensitive data in an Apache Avro object container or an Apache Parquet file.

RelatedFinding

Details about a related finding.

Remediation

Details about the remediation steps for a finding.

Resource

A resource related to a finding.

ResourceDetails

Additional details about a resource related to a finding.

To provide the details, use the object that corresponds to the resource type. For example, if the resource type is AwsEc2Instance, then you use the AwsEc2Instance object to provide the details.

If the type-specific object does not contain all of the fields you want to populate, then you use the Other object to populate those additional fields.

You also use the Other object to populate the details when the selected type does not have a corresponding object.

SecurityHubClient

A client for the AWS SecurityHub API.

SecurityHubResult

Details about the account that was not processed.

SensitiveDataDetections

The list of detected instances of sensitive data.

SensitiveDataResult

Contains a detected instance of sensitive data that are based on built-in identifiers.

Severity

The severity of the finding.

The finding provider can provide the initial severity. The finding provider can only update the severity if it has not been updated using BatchUpdateFindings.

The finding must have either Label or Normalized populated. If only one of these attributes is populated, then Security Hub automatically populates the other one. If neither attribute is populated, then the finding is invalid. Label is the preferred attribute.

SeverityUpdate

Updates to the severity information for a finding.

SoftwarePackage

Information about a software package.

SortCriterion

A collection of finding attributes used to sort findings.

Standard

Provides information about a specific standard.

StandardsControl

Details for an individual security standard control.

StandardsSubscription

A resource that represents your subscription to a supported standard.

StandardsSubscriptionRequest

The standard that you want to enable.

StatusReason

Provides additional context for the value of Compliance.Status.

StringFilter

A string filter for querying findings.

TagResourceRequest

TagResourceResponse

ThreatIntelIndicator

Details about the threat intelligence related to a finding.

UntagResourceRequest

UntagResourceResponse

UpdateActionTargetRequest

UpdateActionTargetResponse

UpdateFindingsRequest

UpdateFindingsResponse

UpdateInsightRequest

UpdateInsightResponse

UpdateOrganizationConfigurationRequest

UpdateOrganizationConfigurationResponse

UpdateSecurityHubConfigurationRequest

UpdateSecurityHubConfigurationResponse

UpdateStandardsControlRequest

UpdateStandardsControlResponse

Vulnerability

A vulnerability associated with a finding.

VulnerabilityVendor

A vendor that generates a vulnerability report.

WafAction

Details about the action that CloudFront or AWS WAF takes when a web request matches the conditions in the rule.

WafExcludedRule

Details about a rule to exclude from a rule group.

WafOverrideAction

Details about an override action for a rule.

Workflow

Provides information about the status of the investigation into a finding.

WorkflowUpdate

Used to update information about the investigation into the finding.

Enums

AcceptAdministratorInvitationError

Errors returned by AcceptAdministratorInvitation

AcceptInvitationError

Errors returned by AcceptInvitation

BatchDisableStandardsError

Errors returned by BatchDisableStandards

BatchEnableStandardsError

Errors returned by BatchEnableStandards

BatchImportFindingsError

Errors returned by BatchImportFindings

BatchUpdateFindingsError

Errors returned by BatchUpdateFindings

CreateActionTargetError

Errors returned by CreateActionTarget

CreateInsightError

Errors returned by CreateInsight

CreateMembersError

Errors returned by CreateMembers

DeclineInvitationsError

Errors returned by DeclineInvitations

DeleteActionTargetError

Errors returned by DeleteActionTarget

DeleteInsightError

Errors returned by DeleteInsight

DeleteInvitationsError

Errors returned by DeleteInvitations

DeleteMembersError

Errors returned by DeleteMembers

DescribeActionTargetsError

Errors returned by DescribeActionTargets

DescribeHubError

Errors returned by DescribeHub

DescribeOrganizationConfigurationError

Errors returned by DescribeOrganizationConfiguration

DescribeProductsError

Errors returned by DescribeProducts

DescribeStandardsControlsError

Errors returned by DescribeStandardsControls

DescribeStandardsError

Errors returned by DescribeStandards

DisableImportFindingsForProductError

Errors returned by DisableImportFindingsForProduct

DisableOrganizationAdminAccountError

Errors returned by DisableOrganizationAdminAccount

DisableSecurityHubError

Errors returned by DisableSecurityHub

DisassociateFromAdministratorAccountError

Errors returned by DisassociateFromAdministratorAccount

DisassociateFromMasterAccountError

Errors returned by DisassociateFromMasterAccount

DisassociateMembersError

Errors returned by DisassociateMembers

EnableImportFindingsForProductError

Errors returned by EnableImportFindingsForProduct

EnableOrganizationAdminAccountError

Errors returned by EnableOrganizationAdminAccount

EnableSecurityHubError

Errors returned by EnableSecurityHub

GetAdministratorAccountError

Errors returned by GetAdministratorAccount

GetEnabledStandardsError

Errors returned by GetEnabledStandards

GetFindingsError

Errors returned by GetFindings

GetInsightResultsError

Errors returned by GetInsightResults

GetInsightsError

Errors returned by GetInsights

GetInvitationsCountError

Errors returned by GetInvitationsCount

GetMasterAccountError

Errors returned by GetMasterAccount

GetMembersError

Errors returned by GetMembers

InviteMembersError

Errors returned by InviteMembers

ListEnabledProductsForImportError

Errors returned by ListEnabledProductsForImport

ListInvitationsError

Errors returned by ListInvitations

ListMembersError

Errors returned by ListMembers

ListOrganizationAdminAccountsError

Errors returned by ListOrganizationAdminAccounts

ListTagsForResourceError

Errors returned by ListTagsForResource

TagResourceError

Errors returned by TagResource

UntagResourceError

Errors returned by UntagResource

UpdateActionTargetError

Errors returned by UpdateActionTarget

UpdateFindingsError

Errors returned by UpdateFindings

UpdateInsightError

Errors returned by UpdateInsight

UpdateOrganizationConfigurationError

Errors returned by UpdateOrganizationConfiguration

UpdateSecurityHubConfigurationError

Errors returned by UpdateSecurityHubConfiguration

UpdateStandardsControlError

Errors returned by UpdateStandardsControl

Traits

SecurityHub

Trait representing the capabilities of the AWS SecurityHub API. AWS SecurityHub clients implement this trait.