chore(Security Hub): add status extended to Security Hub (#1921)

2026-02-10 14:55:00 +00:00 · 2023-02-21 15:11:43 +01:00
parent 813f3e7d42
commit ce3ef0550f
4 changed files with 4 additions and 4 deletions
--- a/prowler/lib/outputs/json.py
+++ b/prowler/lib/outputs/json.py
@@ -31,7 +31,7 @@ def fill_json_asff(finding_output, audit_info, finding):
    ) = finding_output.CreatedAt = timestamp_utc.strftime("%Y-%m-%dT%H:%M:%SZ")
    finding_output.Severity = Severity(Label=finding.check_metadata.Severity.upper())
    finding_output.Title = finding.check_metadata.CheckTitle
-    finding_output.Description = finding.check_metadata.Description
+    finding_output.Description = finding.status_extended
    finding_output.Resources = [
        Resource(
            Id=finding.resource_arn,
--- a/prowler/providers/aws/services/vpc/vpc_endpoint_services_allowed_principals_trust_boundaries/vpc_endpoint_services_allowed_principals_trust_boundaries.metadata.json
+++ b/prowler/providers/aws/services/vpc/vpc_endpoint_services_allowed_principals_trust_boundaries/vpc_endpoint_services_allowed_principals_trust_boundaries.metadata.json
@@ -9,7 +9,7 @@
  "SubServiceName": "service_endpoint",
  "ResourceIdTemplate": "arn:partition:service:region:account-id:resource-id",
  "Severity": "medium",
-  "ResourceType": "AwsEc2Vpc",
+  "ResourceType": "AwsEc2VpcEndpointService",
  "Description": "Find trust boundaries in VPC endpoint services allowlisted principles.",
  "Risk": "Account VPC could be linked to other accounts.",
  "RelatedUrl": "",
--- a/prowler/providers/aws/services/vpc/vpc_peering_routing_tables_with_least_privilege/vpc_peering_routing_tables_with_least_privilege.metadata.json
+++ b/prowler/providers/aws/services/vpc/vpc_peering_routing_tables_with_least_privilege/vpc_peering_routing_tables_with_least_privilege.metadata.json
@@ -9,7 +9,7 @@
  "SubServiceName": "route_table",
  "ResourceIdTemplate": "arn:partition:service:region:account-id:resource-id",
  "Severity": "medium",
-  "ResourceType": "AwsEc2Vpc",
+  "ResourceType": "AwsEc2VpcPeeringConnection",
  "Description": "Ensure routing tables for VPC peering are least access.",
  "Risk": "Being highly selective in peering routing tables is a very effective way of minimizing the impact of breach as resources outside of these routes are inaccessible to the peered VPC.",
  "RelatedUrl": "",
--- a/tests/lib/outputs/outputs_test.py
+++ b/tests/lib/outputs/outputs_test.py
@@ -291,7 +291,7 @@ class Test_Outputs:
        ) = expected.CreatedAt = timestamp_utc.strftime("%Y-%m-%dT%H:%M:%SZ")
        expected.Severity = Severity(Label=finding.check_metadata.Severity.upper())
        expected.Title = finding.check_metadata.CheckTitle
-        expected.Description = finding.check_metadata.Description
+        expected.Description = finding.status_extended
        expected.Resources = [
            Resource(
                Id="test-arn",