ResourceDetails
Additional details about a resource related to a finding.
To provide the details, use the object that corresponds to the resource type. For example, if the resource type is AwsEc2Instance
, then you use the AwsEc2Instance
object to provide the details.
If the type-specific object does not contain all of the fields you want to populate, then you use the Other
object to populate those additional fields.
You also use the Other
object to populate the details when the selected type does not have a corresponding object.
Types
Properties
Provides details about AppSync message broker. A message broker allows software applications and components to communicate using various programming languages, operating systems, and formal messaging protocols.
Provides information about a REST API in version 1 of Amazon API Gateway.
Provides information about a version 1 Amazon API Gateway stage.
Provides information about a version 2 API in Amazon API Gateway.
Provides information about a version 2 stage for Amazon API Gateway.
Provides details about an AppSync Graph QL API, which lets you query multiple databases, microservices, and APIs from a single GraphQL endpoint.
Provides information about an Amazon Athena workgroup. A workgroup helps you separate users, teams, applications, or workloads. It also helps you set limits on data processing and track costs.
Details for an autoscaling group.
Provides details about a launch configuration.
Provides details about an Backup backup plan.
Provides details about an Backup backup vault.
Provides details about an Backup backup, or recovery point.
Provides details about an Certificate Manager certificate.
Details about an CloudFormation stack. A stack is a collection of Amazon Web Services resources that you can manage as a single unit.
Details about a CloudFront distribution.
Provides details about a CloudTrail trail.
Details about an Amazon CloudWatch alarm. An alarm allows you to monitor and receive alerts about your Amazon Web Services resources and applications across multiple Regions.
Details for an CodeBuild project.
Provides details about an Database Migration Service (DMS) endpoint. An endpoint provides connection, data store type, and location information about your data store.
Provides details about an DMS replication instance. DMS uses a replication instance to connect to your source data store, read the source data, and format the data for consumption by the target data store.
Provides details about an DMS replication task. A replication task moves a set of data from the source endpoint to the target endpoint.
Details about a DynamoDB table.
Provides details about an Client VPN endpoint. A Client VPN endpoint is the resource that you create and configure to enable and manage client VPN sessions. It's the termination point for all client VPN sessions.
Details about an Elastic IP address.
Details about an EC2 instance related to a finding.
Specifies the properties for creating an Amazon Elastic Compute Cloud (Amazon EC2) launch template.
Details about an EC2 network access control list (ACL).
Details for an EC2 network interface.
Provides details about a route table. A route table contains a set of rules, called routes, that determine where to direct network traffic from your subnet or gateway.
Details for an EC2 security group.
Details about a subnet in Amazon EC2.
Details about an Amazon EC2 transit gateway that interconnects your virtual private clouds (VPC) and on-premises networks.
Details for an Amazon EC2 volume.
Details for an Amazon EC2 VPC.
Details about the service configuration for a VPC endpoint service.
Details about an Amazon EC2 VPC peering connection. A VPC peering connection is a networking connection between two VPCs that enables you to route traffic between them privately.
Details about an Amazon EC2 VPN connection.
Information about an Amazon ECR image.
Information about an Amazon Elastic Container Registry repository.
Details about an Amazon ECS cluster.
Provides information about a Docker container that's part of a task.
Details about a service within an ECS cluster.
Details about a task in a cluster.
Details about a task definition. A task definition describes the container and volume definitions of an Amazon Elastic Container Service task.
Details about an Amazon EFS access point. An access point is an application-specific view into an EFS file system that applies an operating system user and group, and a file system path, to any file system request made through the access point.
Details about an Amazon EKS cluster.
Details about an Elastic Beanstalk environment.
Details for an Elasticsearch domain.
Contains details about a Classic Load Balancer.
Details about a load balancer.
A schema defines the structure of events that are sent to Amazon EventBridge. Schema registries are containers for schemas. They collect and organize schemas so that your schemas are in logical groups.
Provides details about an Amazon EventBridge global endpoint. The endpoint can improve your application’s availability by making it Regional-fault tolerant.
Provides details about Amazon EventBridge event bus for an endpoint. An event bus is a router that receives events and delivers them to zero or more destinations, or targets.
Provides details about an Amazon GuardDuty detector. A detector is an object that represents the GuardDuty service. A detector is required for GuardDuty to become operational.
Details about an IAM access key related to a finding.
Contains details about an IAM group.
Details about an IAM permissions policy.
Details about an IAM role.
Details about an IAM user.
Details about an Amazon Kinesis data stream.
Details about an KMS key.
Details about a Lambda function.
Details for a Lambda layer version.
Provides details about an Amazon Managed Streaming for Apache Kafka (Amazon MSK) cluster.
Details about an Network Firewall firewall.
Details about an Network Firewall firewall policy.
Details about an Network Firewall rule group.
Details about an Amazon OpenSearch Service domain.
Details about an Amazon RDS database cluster.
Details about an Amazon RDS database cluster snapshot.
Details about an Amazon RDS database instance.
Details about an Amazon RDS DB security group.
Details about an Amazon RDS database snapshot.
Details about an RDS event notification subscription.
Contains details about an Amazon Redshift cluster.
Provides details about an Amazon Route 53 hosted zone, including the four name servers assigned to the hosted zone. A hosted zone represents a collection of records that can be managed together, belonging to a single parent domain name.
Provides details about an Amazon Simple Storage Service (Amazon S3) access point. S3 access points are named network endpoints that are attached to S3 buckets that you can use to perform S3 object operations.
Details about the Amazon S3 Public Access Block configuration for an account.
Details about an S3 bucket related to a finding.
Details about an S3 object related to a finding.
Provides details about an Amazon SageMaker AI notebook instance.
Details about a Secrets Manager secret.
Details about an SNS topic.
Details about an SQS queue.
Provides information about the state of a patch on an instance based on the patch baseline that was used to patch the instance.
Provides details about an Step Functions state machine, which is a workflow consisting of a series of event-driven steps.
Details about a rate-based rule for global resources.
Details about a rate-based rule for Regional resources.
Details about an WAF rule for Regional resources.
Details about an WAF rule group for Regional resources.
Details about an WAF web access control list (web ACL) for Regional resources.
Details about an WAF rule for global resources.
Details about an WAF rule group for global resources.
Details about an WAFv2 rule group.
Details about an WAFv2 web Access Control List (ACL).
Details for an WAF web ACL.
Information about the encryption configuration for X-Ray.
Details about a container resource related to a finding.