Link Search Menu Expand Document

Inspector

  • prefix: inspector

Table of Contents

Privileges

AddAttributesToFindings

  • description: Assigns attributes (key and value pairs) to the findings that are specified by the ARNs of the findings.
  • access level: Write
  • resource types
{
    "": {
        "resource_type": "",
        "required": false,
        "condition_keys": [],
        "dependent_actions": []
    }
}

CreateAssessmentTarget

  • description: Creates a new assessment target using the ARN of the resource group that is generated by CreateResourceGroup.
  • access level: Write
  • resource types
{
    "": {
        "resource_type": "",
        "required": false,
        "condition_keys": [],
        "dependent_actions": []
    }
}

CreateAssessmentTemplate

  • description: Creates an assessment template for the assessment target that is specified by the ARN of the assessment target.
  • access level: Write
  • resource types
{
    "": {
        "resource_type": "",
        "required": false,
        "condition_keys": [],
        "dependent_actions": []
    }
}

CreateResourceGroup

  • description: Creates a resource group using the specified set of tags (key and value pairs) that are used to select the EC2 instances to be included in an Amazon Inspector assessment target.
  • access level: Write
  • resource types
{
    "": {
        "resource_type": "",
        "required": false,
        "condition_keys": [],
        "dependent_actions": []
    }
}

DeleteAssessmentRun

  • description: Deletes the assessment run that is specified by the ARN of the assessment run.
  • access level: Write
  • resource types
{
    "": {
        "resource_type": "",
        "required": false,
        "condition_keys": [],
        "dependent_actions": []
    }
}

DeleteAssessmentTarget

  • description: Deletes the assessment target that is specified by the ARN of the assessment target.
  • access level: Write
  • resource types
{
    "": {
        "resource_type": "",
        "required": false,
        "condition_keys": [],
        "dependent_actions": []
    }
}

DeleteAssessmentTemplate

  • description: Deletes the assessment template that is specified by the ARN of the assessment template.
  • access level: Write
  • resource types
{
    "": {
        "resource_type": "",
        "required": false,
        "condition_keys": [],
        "dependent_actions": []
    }
}

DescribeAssessmentRuns

  • description: Describes the assessment runs that are specified by the ARNs of the assessment runs.
  • access level: Read
  • resource types
{
    "": {
        "resource_type": "",
        "required": false,
        "condition_keys": [],
        "dependent_actions": []
    }
}

DescribeAssessmentTargets

  • description: Describes the assessment targets that are specified by the ARNs of the assessment targets.
  • access level: Read
  • resource types
{
    "": {
        "resource_type": "",
        "required": false,
        "condition_keys": [],
        "dependent_actions": []
    }
}

DescribeAssessmentTemplates

  • description: Describes the assessment templates that are specified by the ARNs of the assessment templates.
  • access level: Read
  • resource types
{
    "": {
        "resource_type": "",
        "required": false,
        "condition_keys": [],
        "dependent_actions": []
    }
}

DescribeCrossAccountAccessRole

  • description: Describes the IAM role that enables Amazon Inspector to access your AWS account.
  • access level: Read
  • resource types
{
    "": {
        "resource_type": "",
        "required": false,
        "condition_keys": [],
        "dependent_actions": []
    }
}

DescribeFindings

  • description: Describes the findings that are specified by the ARNs of the findings.
  • access level: Read
  • resource types
{
    "": {
        "resource_type": "",
        "required": false,
        "condition_keys": [],
        "dependent_actions": []
    }
}

DescribeResourceGroups

  • description: Describes the resource groups that are specified by the ARNs of the resource groups.
  • access level: Read
  • resource types
{
    "": {
        "resource_type": "",
        "required": false,
        "condition_keys": [],
        "dependent_actions": []
    }
}

DescribeRulesPackages

  • description: Describes the rules packages that are specified by the ARNs of the rules packages.
  • access level: Read
  • resource types
{
    "": {
        "resource_type": "",
        "required": false,
        "condition_keys": [],
        "dependent_actions": []
    }
}

GetTelemetryMetadata

  • description: Information about the data that is collected for the specified assessment run.
  • access level: Read
  • resource types
{
    "": {
        "resource_type": "",
        "required": false,
        "condition_keys": [],
        "dependent_actions": []
    }
}

ListAssessmentRunAgents

  • description: Lists the agents of the assessment runs that are specified by the ARNs of the assessment runs.
  • access level: List
  • resource types
{
    "": {
        "resource_type": "",
        "required": false,
        "condition_keys": [],
        "dependent_actions": []
    }
}

ListAssessmentRuns

  • description: Lists the assessment runs that correspond to the assessment templates that are specified by the ARNs of the assessment templates.
  • access level: List
  • resource types
{
    "": {
        "resource_type": "",
        "required": false,
        "condition_keys": [],
        "dependent_actions": []
    }
}

ListAssessmentTargets

  • description: Lists the ARNs of the assessment targets within this AWS account.
  • access level: List
  • resource types
{
    "": {
        "resource_type": "",
        "required": false,
        "condition_keys": [],
        "dependent_actions": []
    }
}

ListAssessmentTemplates

  • description: Lists the assessment templates that correspond to the assessment targets that are specified by the ARNs of the assessment targets.
  • access level: List
  • resource types
{
    "": {
        "resource_type": "",
        "required": false,
        "condition_keys": [],
        "dependent_actions": []
    }
}

ListEventSubscriptions

  • description: Lists all the event subscriptions for the assessment template that is specified by the ARN of the assessment template.
  • access level: List
  • resource types
{
    "": {
        "resource_type": "",
        "required": false,
        "condition_keys": [],
        "dependent_actions": []
    }
}

ListFindings

  • description: Lists findings that are generated by the assessment runs that are specified by the ARNs of the assessment runs.
  • access level: List
  • resource types
{
    "": {
        "resource_type": "",
        "required": false,
        "condition_keys": [],
        "dependent_actions": []
    }
}

ListRulesPackages

  • description: Lists all available Amazon Inspector rules packages.
  • access level: List
  • resource types
{
    "": {
        "resource_type": "",
        "required": false,
        "condition_keys": [],
        "dependent_actions": []
    }
}

ListTagsForResource

  • description: Lists all tags associated with an assessment template.
  • access level: List
  • resource types
{
    "": {
        "resource_type": "",
        "required": false,
        "condition_keys": [],
        "dependent_actions": []
    }
}

PreviewAgents

  • description: Previews the agents installed on the EC2 instances that are part of the specified assessment target.
  • access level: Read
  • resource types
{
    "": {
        "resource_type": "",
        "required": false,
        "condition_keys": [],
        "dependent_actions": []
    }
}

RegisterCrossAccountAccessRole

  • description: Registers the IAM role that Amazon Inspector uses to list your EC2 instances at the start of the assessment run or when you call the PreviewAgents action.
  • access level: Write
  • resource types
{
    "": {
        "resource_type": "",
        "required": false,
        "condition_keys": [],
        "dependent_actions": []
    }
}

RemoveAttributesFromFindings

  • description: Removes entire attributes (key and value pairs) from the findings that are specified by the ARNs of the findings where an attribute with the specified key exists.
  • access level: Write
  • resource types
{
    "": {
        "resource_type": "",
        "required": false,
        "condition_keys": [],
        "dependent_actions": []
    }
}

SetTagsForResource

  • description: Sets tags (key and value pairs) to the assessment template that is specified by the ARN of the assessment template.
  • access level: Tagging
  • resource types
{
    "": {
        "resource_type": "",
        "required": false,
        "condition_keys": [],
        "dependent_actions": []
    }
}

StartAssessmentRun

  • description: Starts the assessment run specified by the ARN of the assessment template.
  • access level: Write
  • resource types
{
    "": {
        "resource_type": "",
        "required": false,
        "condition_keys": [],
        "dependent_actions": []
    }
}

StopAssessmentRun

  • description: Stops the assessment run that is specified by the ARN of the assessment run.
  • access level: Write
  • resource types
{
    "": {
        "resource_type": "",
        "required": false,
        "condition_keys": [],
        "dependent_actions": []
    }
}

SubscribeToEvent

  • description: Enables the process of sending Amazon Simple Notification Service (SNS) notifications about a specified event to a specified SNS topic.
  • access level: Write
  • resource types
{
    "": {
        "resource_type": "",
        "required": false,
        "condition_keys": [],
        "dependent_actions": []
    }
}

UnsubscribeFromEvent

  • description: Disables the process of sending Amazon Simple Notification Service (SNS) notifications about a specified event to a specified SNS topic.
  • access level: Write
  • resource types
{
    "": {
        "resource_type": "",
        "required": false,
        "condition_keys": [],
        "dependent_actions": []
    }
}

UpdateAssessmentTarget

  • description: Updates the assessment target that is specified by the ARN of the assessment target.
  • access level: Write
  • resource types
{
    "": {
        "resource_type": "",
        "required": false,
        "condition_keys": [],
        "dependent_actions": []
    }
}