[New Data Source]: aws_securityhub_finding(s)

hashicorp / terraform-provider-aws

The AWS Provider enables Terraform to manage AWS resources.

Mozilla Public License 2.0

9.63k stars 9.01k forks source link

Description

I'd like to retrieve data on findings such as the product ARN of a specific finding. This would allow me to continue suppressing findings in code without having to hard code the ARN

Requested Resource(s) and/or Data Source(s)

aws_securityhub_finding
aws_securityhub_findings

Potential Terraform Configuration

# returns one result or an error
data "aws_securityhub_finding" {
  filter {
    name       = "AwsAccountId"
    comparison = "EQUALS"
    value      = "012345678912"
  }

  filter {
    name       = "Id"
    comparison = "EQUALS"
    value      = "<findings-id>"
  }
}

# similar to above only it returns zero or a list
data "aws_securityhub_findings" {

References

Related #29164
Module for suppressions https://github.com/infralicious/terraform-aws-securityhub-batchupdatefindings
https://docs.aws.amazon.com/cli/latest/reference/securityhub/get-findings.html

Would you like to implement a fix?

None

Community Note

Voting for Prioritization

Please vote on this issue by adding a 👍 reaction to the original post to help the community and maintainers prioritize this request.

Please see our prioritization guide for information on how we prioritize.

Please do not leave "+1" or other comments that do not add relevant new information or questions, they generate extra noise for issue followers and do not help prioritize the request.

Volunteering to Work on This Issue

If you are interested in working on this issue, please leave a comment.

If this would be your first contribution, please review the contribution guide.

hashicorp / terraform-provider-aws