NAME

Paws::SecurityHub::BatchUpdateFindings - Arguments for method BatchUpdateFindings on Paws::SecurityHub

DESCRIPTION

This class represents the parameters used for calling the method BatchUpdateFindings on the AWS SecurityHub service. Use the attributes of this class as arguments to method BatchUpdateFindings.

You shouldn't make instances of this class. Each attribute should be used as a named argument in the call to BatchUpdateFindings.

SYNOPSIS

my $securityhub = Paws->service('SecurityHub');
my $BatchUpdateFindingsResponse = $securityhub->BatchUpdateFindings(
  FindingIdentifiers => [
    {
      Id         => 'MyNonEmptyString',
      ProductArn => 'MyNonEmptyString',

    },
    ...
  ],
  Confidence  => 1,    # OPTIONAL
  Criticality => 1,    # OPTIONAL
  Note        => {
    Text      => 'MyNonEmptyString',
    UpdatedBy => 'MyNonEmptyString',

  },                   # OPTIONAL
  RelatedFindings => [
    {
      Id         => 'MyNonEmptyString',
      ProductArn => 'MyNonEmptyString',

    },
    ...
  ],                   # OPTIONAL
  Severity => {
    Label => 'INFORMATIONAL'
    ,    # values: INFORMATIONAL, LOW, MEDIUM, HIGH, CRITICAL; OPTIONAL
    Normalized => 1,    # max: 100
    Product    => 1,    # OPTIONAL
  },    # OPTIONAL
  Types             => [ 'MyNonEmptyString', ... ],    # OPTIONAL
  UserDefinedFields => { 'MyNonEmptyString' => 'MyNonEmptyString', }
  ,                                                    # OPTIONAL
  VerificationState => 'UNKNOWN',                      # OPTIONAL
  Workflow          => {
    Status => 'NEW', # values: NEW, NOTIFIED, RESOLVED, SUPPRESSED; OPTIONAL
  },    # OPTIONAL
);

# Results:
my $ProcessedFindings   = $BatchUpdateFindingsResponse->ProcessedFindings;
my $UnprocessedFindings = $BatchUpdateFindingsResponse->UnprocessedFindings;

# Returns a L<Paws::SecurityHub::BatchUpdateFindingsResponse> object.

Values for attributes that are native types (Int, String, Float, etc) can passed as-is (scalar values). Values for complex Types (objects) can be passed as a HashRef. The keys and values of the hashref will be used to instance the underlying object. For the AWS API documentation, see https://docs.aws.amazon.com/goto/WebAPI/securityhub/BatchUpdateFindings

ATTRIBUTES

Confidence => Int

The updated value for the finding confidence. Confidence is defined as the likelihood that a finding accurately identifies the behavior or issue that it was intended to identify.

Confidence is scored on a 0-100 basis using a ratio scale, where 0 means zero percent confidence and 100 means 100 percent confidence.

Criticality => Int

The updated value for the level of importance assigned to the resources associated with the findings.

A score of 0 means that the underlying resources have no criticality, and a score of 100 is reserved for the most critical resources.

REQUIRED FindingIdentifiers => ArrayRef[Paws::SecurityHub::AwsSecurityFindingIdentifier]

The list of findings to update. BatchUpdateFindings can be used to update up to 100 findings at a time.

For each finding, the list provides the finding identifier and the ARN of the finding provider.

Note => Paws::SecurityHub::NoteUpdate

RelatedFindings => ArrayRef[Paws::SecurityHub::RelatedFinding]

A list of findings that are related to the updated findings.

Severity => Paws::SecurityHub::SeverityUpdate

Used to update the finding severity.

Types => ArrayRef[Str|Undef]

One or more finding types in the format of namespace/category/classifier that classify a finding.

Valid namespace values are as follows.

  • Software and Configuration Checks

  • TTPs

  • Effects

  • Unusual Behaviors

  • Sensitive Data Identifications

UserDefinedFields => Paws::SecurityHub::FieldMap

A list of name/value string pairs associated with the finding. These are custom, user-defined fields added to a finding.

VerificationState => Str

Indicates the veracity of a finding.

The available values for VerificationState are as follows.

  • UNKNOWN – The default disposition of a security finding

  • TRUE_POSITIVE – The security finding is confirmed

  • FALSE_POSITIVE – The security finding was determined to be a false alarm

  • BENIGN_POSITIVE – A special case of TRUE_POSITIVE where the finding doesn't pose any threat, is expected, or both

Valid values are: "UNKNOWN", "TRUE_POSITIVE", "FALSE_POSITIVE", "BENIGN_POSITIVE"

Workflow => Paws::SecurityHub::WorkflowUpdate

Used to update the workflow status of a finding.

The workflow status indicates the progress of the investigation into the finding.

SEE ALSO

This class forms part of Paws, documenting arguments for method BatchUpdateFindings in Paws::SecurityHub

BUGS and CONTRIBUTIONS

The source code is located here: https://github.com/pplu/aws-sdk-perl

Please report bugs to: https://github.com/pplu/aws-sdk-perl/issues