AWS::SecurityHub::AutomationRule SeverityUpdate - AWS CloudFormation
SyntaxProperties

AWS::SecurityHub::AutomationRule SeverityUpdate

Updates to the severity information for a finding.

Syntax

To declare this entity in your AWS CloudFormation template, use the following syntax:

JSON

{
  "Label" : String,
  "Normalized" : Integer,
  "Product" : Number
}

YAML

  Label: String
  Normalized: Integer
  Product: Number

Properties

Label

The severity value of the finding. The allowed values are the following.

  • INFORMATIONAL - No issue was found.

  • LOW - The issue does not require action on its own.

  • MEDIUM - The issue must be addressed but not urgently.

  • HIGH - The issue must be addressed as a priority.

  • CRITICAL - The issue must be remediated immediately to avoid it escalating.

Required: No

Type: String

Allowed values: INFORMATIONAL | LOW | MEDIUM | HIGH | CRITICAL

Update requires: No interruption

Normalized

The normalized severity for the finding. This attribute is to be deprecated in favor of Label.

If you provide Normalized and don't provide Label, Label is set automatically as follows.

  • 0 - INFORMATIONAL

  • 1–39 - LOW

  • 40–69 - MEDIUM

  • 70–89 - HIGH

  • 90–100 - CRITICAL

Required: No

Type: Integer

Minimum: 0

Maximum: 100

Update requires: No interruption

Product

The native severity as defined by the AWS service or integrated partner product that generated the finding.

Required: No

Type: Number

Update requires: No interruption