AWS::SecurityHub::AutomationRuleV2 OcsfMapFilter - AWS CloudFormation
SyntaxProperties
Services or capabilities described in AWS documentation might vary by Region. To see the differences applicable to the AWS European Sovereign Cloud Region, see the AWS European Sovereign Cloud User Guide.

This is the new CloudFormation Template Reference Guide. Please update your bookmarks and links. For help getting started with CloudFormation, see the AWS CloudFormation User Guide.

AWS::SecurityHub::AutomationRuleV2 OcsfMapFilter

Enables filtering of security findings based on map field values in OCSF.

Syntax

To declare this entity in your CloudFormation template, use the following syntax:

JSON

{
  "FieldName" : String,
  "Filter" : MapFilter
}

YAML

  FieldName: String
  Filter: 
    MapFilter

Properties

FieldName

The name of the field.

Required: Yes

Type: String

Allowed values: resources.tags

Update requires: No interruption

Filter

Enables filtering of security findings based on map field values in OCSF.

Required: Yes

Type: MapFilter

Update requires: No interruption