View Source AWS.Inspector2 (aws-elixir v1.0.4)
Amazon Inspector is a vulnerability discovery service that automates continuous scanning for security vulnerabilities within your Amazon EC2, Amazon ECR, and Amazon Web Services Lambda environments.
Link to this section Summary
Functions
Associates an Amazon Web Services account with an Amazon Inspector delegated administrator.
Retrieves the Amazon Inspector status of multiple Amazon Web Services accounts within your environment.
Retrieves code snippets from findings that Amazon Inspector detected code vulnerabilities in.
Gets vulnerability details for findings.
Gets free trial status for multiple Amazon Web Services accounts.
Retrieves Amazon Inspector deep inspection activation status of multiple member accounts within your organization.
Activates or deactivates Amazon Inspector deep inspection for the provided member accounts in your organization.
Cancels the given findings report.
Cancels a software bill of materials (SBOM) report.
Creates a CIS scan configuration.
Creates a filter resource using specified filter criteria.
Creates a finding report.
Creates a software bill of materials (SBOM) report.
Deletes a CIS scan configuration.
Deletes a filter resource.
Describe Amazon Inspector configuration settings for an Amazon Web Services organization.
Disables Amazon Inspector scans for one or more Amazon Web Services accounts.
Disables the Amazon Inspector delegated administrator for your organization.
Disassociates a member account from an Amazon Inspector delegated administrator.
Enables Amazon Inspector scans for one or more Amazon Web Services accounts.
Enables the Amazon Inspector delegated administrator for your Organizations organization.
Retrieves a CIS scan report.
Retrieves CIS scan result details.
Retrieves setting configurations for Inspector scans.
Retrieves information about the Amazon Inspector delegated administrator for your organization.
Retrieves the activation status of Amazon Inspector deep inspection and custom paths associated with your account.
Gets an encryption key.
Gets the status of a findings report.
Gets member information for your organization.
Gets details of a software bill of materials (SBOM) report.
Lists the permissions an account has to configure Amazon Inspector.
Lists CIS scan configurations.
Lists scan results aggregated by checks.
Lists scan results aggregated by a target resource.
Returns a CIS scan list.
Lists coverage details for your environment.
Lists Amazon Inspector coverage statistics for your environment.
Lists information about the Amazon Inspector delegated administrator of your organization.
Lists the filters associated with your account.
Lists aggregated finding data for your environment based on specific criteria.
Lists findings for your environment.
List members associated with the Amazon Inspector delegated administrator for your organization.
Lists all tags attached to a given resource.
Lists the Amazon Inspector usage totals over the last 30 days.
Resets an encryption key.
Lists Amazon Inspector coverage details for a specific vulnerability.
Sends a CIS session health.
Sends a CIS session telemetry.
Starts a CIS session.
Stops a CIS session.
Adds tags to a resource.
Removes tags from a resource.
Updates a CIS scan configuration.
Updates setting configurations for your Amazon Inspector account.
Activates, deactivates Amazon Inspector deep inspection, or updates custom paths for your account.
Updates an encryption key.
Specifies the action that is to be applied to the findings that match the filter.
Updates the Amazon Inspector deep inspection custom paths for your organization.
Updates the configurations for your Amazon Inspector organization.
Link to this section Functions
Associates an Amazon Web Services account with an Amazon Inspector delegated administrator.
An HTTP 200 response indicates the association was started but doesn’t indicate whether it completed. You can check if the association completed using ListMembers for multiple accounts or GetMembers for a single account. An HTTP 402 response indicates the association failed because the organization size exceeded its limit. For information on limits, see Amazon Inspector quotas.
Retrieves the Amazon Inspector status of multiple Amazon Web Services accounts within your environment.
Retrieves code snippets from findings that Amazon Inspector detected code vulnerabilities in.
Gets vulnerability details for findings.
Gets free trial status for multiple Amazon Web Services accounts.
batch_get_member_ec2_deep_inspection_status(client, input, options \\ [])
View SourceRetrieves Amazon Inspector deep inspection activation status of multiple member accounts within your organization.
You must be the delegated administrator of an organization in Amazon Inspector to use this API.
batch_update_member_ec2_deep_inspection_status(client, input, options \\ [])
View SourceActivates or deactivates Amazon Inspector deep inspection for the provided member accounts in your organization.
You must be the delegated administrator of an organization in Amazon Inspector to use this API.
Cancels the given findings report.
Cancels a software bill of materials (SBOM) report.
Creates a CIS scan configuration.
Creates a filter resource using specified filter criteria.
When the filter action is set to SUPPRESS this action creates a suppression
rule.
Creates a finding report.
By default only ACTIVE findings are returned in the report. To see SUPRESSED
or CLOSED findings you must specify a value for the findingStatus filter
criteria.
Creates a software bill of materials (SBOM) report.
Deletes a CIS scan configuration.
Deletes a filter resource.
Describe Amazon Inspector configuration settings for an Amazon Web Services organization.
Disables Amazon Inspector scans for one or more Amazon Web Services accounts.
Disabling all scan types in an account disables the Amazon Inspector service.
Disables the Amazon Inspector delegated administrator for your organization.
Disassociates a member account from an Amazon Inspector delegated administrator.
Enables Amazon Inspector scans for one or more Amazon Web Services accounts.
Enables the Amazon Inspector delegated administrator for your Organizations organization.
Retrieves a CIS scan report.
Retrieves CIS scan result details.
Retrieves setting configurations for Inspector scans.
Retrieves information about the Amazon Inspector delegated administrator for your organization.
get_ec2_deep_inspection_configuration(client, input, options \\ [])
View SourceRetrieves the activation status of Amazon Inspector deep inspection and custom paths associated with your account.
get_encryption_key(client, resource_type, scan_type, options \\ [])
View SourceGets an encryption key.
Gets the status of a findings report.
Gets member information for your organization.
Gets details of a software bill of materials (SBOM) report.
Lists the permissions an account has to configure Amazon Inspector.
Lists CIS scan configurations.
list_cis_scan_results_aggregated_by_checks(client, input, options \\ [])
View SourceLists scan results aggregated by checks.
list_cis_scan_results_aggregated_by_target_resource(client, input, options \\ [])
View SourceLists scan results aggregated by a target resource.
Returns a CIS scan list.
Lists coverage details for your environment.
Lists Amazon Inspector coverage statistics for your environment.
Lists information about the Amazon Inspector delegated administrator of your organization.
Lists the filters associated with your account.
Lists aggregated finding data for your environment based on specific criteria.
Lists findings for your environment.
List members associated with the Amazon Inspector delegated administrator for your organization.
Lists all tags attached to a given resource.
Lists the Amazon Inspector usage totals over the last 30 days.
Resets an encryption key.
After the key is reset your resources will be encrypted by an Amazon Web Services owned key.
Lists Amazon Inspector coverage details for a specific vulnerability.
Sends a CIS session health.
This API is used by the Amazon Inspector SSM plugin to communicate with the Amazon Inspector service. The Amazon Inspector SSM plugin calls this API to start a CIS scan session for the scan ID supplied by the service.
Sends a CIS session telemetry.
This API is used by the Amazon Inspector SSM plugin to communicate with the Amazon Inspector service. The Amazon Inspector SSM plugin calls this API to start a CIS scan session for the scan ID supplied by the service.
Starts a CIS session.
This API is used by the Amazon Inspector SSM plugin to communicate with the Amazon Inspector service. The Amazon Inspector SSM plugin calls this API to start a CIS scan session for the scan ID supplied by the service.
Stops a CIS session.
This API is used by the Amazon Inspector SSM plugin to communicate with the Amazon Inspector service. The Amazon Inspector SSM plugin calls this API to stop a CIS scan session for the scan ID supplied by the service.
Adds tags to a resource.
Removes tags from a resource.
Updates a CIS scan configuration.
Updates setting configurations for your Amazon Inspector account.
When you use this API as an Amazon Inspector delegated administrator this updates the setting for all accounts you manage. Member accounts in an organization cannot update this setting.
update_ec2_deep_inspection_configuration(client, input, options \\ [])
View SourceActivates, deactivates Amazon Inspector deep inspection, or updates custom paths for your account.
Updates an encryption key.
A ResourceNotFoundException means that an Amazon Web Services owned key is
being used for encryption.
Specifies the action that is to be applied to the findings that match the filter.
update_org_ec2_deep_inspection_configuration(client, input, options \\ [])
View SourceUpdates the Amazon Inspector deep inspection custom paths for your organization.
You must be an Amazon Inspector delegated administrator to use this API.
Updates the configurations for your Amazon Inspector organization.