Finding - Amazon GuardDuty
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China.

Finding

Contains information about the finding, which is generated when abnormal or suspicious activity is detected.

Contents

accountId

The ID of the account in which the finding was generated.

Type: String

Required: Yes

arn

The ARN of the finding.

Type: String

Required: Yes

confidence

The confidence score for the finding.

Type: Double

Required: No

createdAt

The time and date when the finding was created.

Type: String

Required: Yes

description

The description of the finding.

Type: String

Required: No

id

The ID of the finding.

Type: String

Required: Yes

partition

The partition associated with the finding.

Type: String

Required: No

region

The Region where the finding was generated.

Type: String

Required: Yes

resource

Contains information about the Amazon resource associated with the activity that prompted GuardDuty to generate a finding.

Type: Resource object

Required: Yes

schemaVersion

The version of the schema used for the finding.

Type: String

Required: Yes

service

Contains additional information about the generated finding.

Type: Service object

Required: No

severity

The severity of the finding.

Type: Double

Required: Yes

title

The title of the finding.

Type: String

Required: No

type

The type of finding.

Type: String

Length Constraints: Minimum length of 1. Maximum length of 50.

Required: Yes

updatedAt

The time and date when the finding was last updated.

Type: String

Required: Yes

See Also

For more information about using this API in one of the language-specific Amazon SDKs, see the following: