automation_rules_list_only
Lists automation_rules in a region or regions, for all properties use automation_rules
Overview
| Name | automation_rules_list_only |
| Type | Resource |
| Description | The AWS::SecurityHub::AutomationRule resource specifies an automation rule based on input parameters. For more information, see [Automation rules](https://docs.aws.amazon.com/securityhub/latest/userguide/automation-rules.html) in the *User Guide*. |
| Id | aws.securityhub.automation_rules_list_only |
Fields
| Name | Datatype | Description |
|---|---|---|
rule_arn | string | |
rule_status | string | Whether the rule is active after it is created. If this parameter is equal to ENABLED, ASH applies the rule to findings and finding updates after the rule is created. |
rule_order | integer | |
description | string | |
rule_name | string | |
created_at | string | The date and time, in UTC and ISO 8601 format. |
updated_at | string | The date and time, in UTC and ISO 8601 format. |
created_by | string | |
is_terminal | boolean | |
actions | array | |
criteria | object | A set of [Security Finding Format (ASFF)](https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-findings-format.html) finding field attributes and corresponding expected values that ASH uses to filter findings. If a rule is enabled and a finding matches the criteria specified in this parameter, ASH applies the rule action to the finding. |
tags | object | A key-value pair to associate with a resource. |
region | string | AWS region. |
Methods
| Name | Accessible by | Required Params |
|---|---|---|
list_resources | SELECT | region |
SELECT examples
Lists all automation_rules in a region.
SELECT
region,
rule_arn
FROM aws.securityhub.automation_rules_list_only
WHERE region = 'us-east-1';
Permissions
For permissions required to operate on the automation_rules_list_only resource, see automation_rules