SecurityHub_ListFinding_Response #3888
Replies: 4 comments
-
According to the API Reference, "productFields" can contain up to 50 key-value pairs. So the presence of StandardsControlArn is not guaranteed for every finding on the list. |
Beta Was this translation helpful? Give feedback.
-
|
Ok, If that case then how to find productFields => StandardsControlArn for security hub finding. |
Beta Was this translation helpful? Give feedback.
-
|
I don't have expertise in Security Hub, so, again, I need to refer to their documentation. According to the Security Hub User Guide, StandardsControlArn is removed if you turn on consolidated control findings. |
Beta Was this translation helpful? Give feedback.
-
|
I'll move this to the Github Discussion tab, since these are usage questions. |
Beta Was this translation helpful? Give feedback.
-
Describe the bug
SecurityHubClient awsSecurityHubAsyncClientBuilder = SecurityHubClient.builder()
.credentialsProvider(new AWSStaticCredentialsProvider(credentials)).region(Helper.getRegion(regionName))
.build();
awsSecurityHubAsyncClientBuilder.getFindings(getFindingsRequest.build())
Above api gives list of security hub findings.
In any element of array,
there is a field called productFields -> StandardsControlArn
And now this field is not coming.
Expected Behavior
In list findings response,
Field called productFields -> StandardsControlArn value must present.
So that, We can find how many findings are passed/failed for a particular standard control.
Current Behavior
In list findings response,
Field called productFields -> StandardsControlArn value is not present.
Reproduction Steps
SecurityHubClient awsSecurityHubAsyncClientBuilder = SecurityHubClient.builder()
.credentialsProvider(new AWSStaticCredentialsProvider(credentials)).region(Region.AP_EAST_1)
.build();
List awsSecurityFinding = awsSecurityHubAsyncClientBuilder.getFindings(GetFindingsRequest.builder().build()).findings()
This will give you list of findings.
You can check any one of item from the above reponse.
Possible Solution
No response
Additional Information/Context
No response
AWS Java SDK version used
2.17.271
JDK version used
OpenJDK Runtime Environment Corretto-17.0.2.8.1 (build 17.0.2+8-LTS)
Operating System and version
Mac
Beta Was this translation helpful? Give feedback.
All reactions