From 7e2110dc4efb3f141937acf2172e817b96d2c5d0 Mon Sep 17 00:00:00 2001
From: Marc Jay <580744+marcjay@users.noreply.github.com>
Date: Thu, 17 Sep 2020 01:37:45 +0100
Subject: [PATCH] Add GetFindings action to example IAM policy for Security Hub

Following the merge of #651, prowler now calls the GetFindings API when using Security Hub integration - this action needs to be added to the required policy
---
 iam/prowler-security-hub.json | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/iam/prowler-security-hub.json b/iam/prowler-security-hub.json
index 309c086a..be6048df 100644
--- a/iam/prowler-security-hub.json
+++ b/iam/prowler-security-hub.json
@@ -3,7 +3,8 @@
     "Statement": [
         {
             "Action": [
-                "securityhub:BatchImportFindings"
+                "securityhub:BatchImportFindings",
+                "securityhub:GetFindings"
             ],
             "Effect": "Allow",
             "Resource": "*"