aws.inspector2-finding¶

AWS Inspector V2 Findings

example:

Use the default filter set, which includes active findings

policies:
  - name: aws-inspector2-finding
    resource: aws.inspector2-finding

example:

Show High and Medium severity findings for a specific finding type It will override default filters that show all Active findings

policies:
  - name: aws-inspector2-finding
    resource: aws.inspector2-finding
    query:
      - filterCriteria:
          findingType:
            - comparison: EQUALS
              value: PACKAGE_VULNERABILITY
          severity:
            - comparison: EQUALS
              value: HIGH
            - comparison: EQUALS
              value: MEDIUM

Reference for available filters:

https://docs.aws.amazon.com/inspector/v2/APIReference/API_FilterCriteria.html#inspector2-Type-FilterCriteria-findingType

Filters¶

event

finding

list-item

ops-item

reduce

value

Actions¶

invoke-lambda

invoke-sfn

notify

post-finding

post-item

put-metric

webhook