ASFF 中的 AwsCloudFormation 资源 - Amazon Security Hub
AwsCloudFormationStack
Amazon Web Services 文档中描述的 Amazon Web Services 服务或功能可能因区域而异。要查看适用于中国区域的差异,请参阅 中国的 Amazon Web Services 服务入门 (PDF)

ASFF 中的 AwsCloudFormation 资源

以下是 AwsCloudFormation 资源的 Amazon 安全调查发现格式(ASFF)的示例。

Amazon Security Hub CSPM 会将各种来源的调查发现标准化为 ASFF。有关 ASFF 的背景信息,请参阅 Amazon安全调查发现格式 (ASFF)

AwsCloudFormationStack

AwsCloudFormationStack 对象提供有关在顶级模板中作为资源进行嵌套的 Amazon CloudFormation 堆栈的详细信息。

以下示例显示了 AwsCloudFormationStack 对象的 Amazon 安全调查发现格式 (ASFF)。要查看 AwsCloudFormationStack 属性的描述,请参阅 Amazon Security Hub CSPM API 参考中的 AwsCloudFormationStackDetails

示例

"AwsCloudFormationStack": { 
	"Capabilities": [
		"CAPABILITY_IAM",
		"CAPABILITY_NAMED_IAM"
	],
	"CreationTime": "2022-02-18T15:31:53.161Z",
	"Description": "Amazon CloudFormation Sample",
	"DisableRollback": true,
	"DriftInformation": {
		"StackDriftStatus": "DRIFTED"
	},
	"EnableTerminationProtection": false,
	"LastUpdatedTime": "2022-02-18T15:31:53.161Z",
	"NotificationArns": [
		"arn:aws:sns:us-east-1:978084797471:sample-sns-cfn"
	],
	"Outputs": [{
		"Description": "URL for newly created LAMP stack",
		"OutputKey": "WebsiteUrl",
		"OutputValue": "http://ec2-44-193-18-241.compute-1.amazonaws.com"
	}],
	"RoleArn": "arn:aws:iam::012345678910:role/exampleRole",
	"StackId": "arn:aws:cloudformation:us-east-1:978084797471:stack/sample-stack/e5d9f7e0-90cf-11ec-88c6-12ac1f91724b",
	"StackName": "sample-stack",
	"StackStatus": "CREATE_COMPLETE",
	"StackStatusReason": "Success",
	"TimeoutInMinutes": 1
}