An array of the finding types of the provider_name or "ALL" to specify all finding types under that provider Below is a list of supported finding types for each built in providers | provider_name | Supported finding types | |-----|-----| | VA | "image_with_vulnerabilities", "image_with_config_issues"| | NA | "anonym_server", "malware_server", "bot_server", "miner_server", "server_suspected_ratio", "server_response", "data_extrusion", "server_weaponized_total"| | ATA | "appid", "cos", "iks", "iam", "kms", "cert", "account", "app"| | CERT | "expired_cert", "expiring_1day_cert", "expiring_10day_cert", "expiring_30day_cert", "expiring_60day_cert", "expiring_90day_cert"| | ALL | "ALL"|.
Below is a list of builtin providers that you can select in addition to the ones you obtain by calling Findings API /v1/{account_id}/providers : | provider_name | The source they represent | |-----|-----| | VA | Vulnerable image findings| | NA | Network Insights findings| | ATA | Activity Insights findings| | CERT | Certificate Manager findings| | ALL | Special provider name to represent all the providers. Its mutually exclusive with other providers meaning either you choose ALL or you don't|.
Generated using TypeDoc
The alert sources. They identify the providers and their finding types which makes the findings available to Security Advisor.