tatum-cnapp-latest-cloud-scan-report-batch
Get latest cloud scan reports from the Tatum CNAPP service based on the connect profile and cloud ID passed as the input record.
tatum-cnapp-latest-cloud-scan-report-batch [profile=PROFILE]
- profile=PROFILE
- Tatum CNAPP connect profile code
Output Fields
| Field | Type | Name | Description |
|---|---|---|---|
| profile | String | Connect profile | Connect profile code of Tatum CNAPP. |
| cloud_id | String | Cloud ID | e.g. 677785d65703d89d7ca7caaa |
| cloud_provider | String | Cloud service provider | e.g. AWS, AZURE, GCP |
| cloud_name | String | Cloud name | e.g. acme-dev |
| cloud_alias | String | Cloud alias | e.g. acme-dev |
| cloud_account | String | Cloud account | e.g. 12 digits for AWS |
| cloud_regions | List | Cloud regions | e.g. us-east-1 |
| status | String | Status | e.g. READY, ERROR |
| scan_status | String | Scan status | e.g. WAITING, DONE |
| is_scheduled_scan_enabled | Bool | Is scheduled scan enabled | |
| schedule | String | Schedule | e.g. 0 3 * * * |
| key_validation_error | String | Key validation error | e.g. Invalid AccessKeyId |
| event_process_validation_error | String | Event process validation error | e.g. AccessDeniedException:not authorized to perform s3:ListBucket or s3:GetObject |
| is_event_process_enabled | Bool | Is event process enabled | true or false |
| is_event_process_validated | Bool | Is event process validated | true or false |
| created_by | String | Created by | e.g. admin@acme.com |
| updated_by | String | Updated by | e.g. admin@acme.com |
| created | Date | Created time | Creation date and time. |
| updated | Date | Updated time | Last updated date and time. |
| scan_id | String | Scan ID | e.g. 685edc26a8893e1dea2bac77 |
| compliance_id | String | Tatum compliance ID | e.g. CIS-AWS_4.0.0 |
| compliance_name | String | Compliance name | e.g. AWS CIS Benchmark |
| category0 | String | Category 0 | e.g. 1. Identity and Access Management |
| category1 | String | Category 1 | e.g. 1.10. Check MFA for all access |
| category2 | String | Category 2 | e.g. 1.10.1. Check MFA for all access |
| cloud_resource_type | String | Cloud resource type | e.g. aws_iam_user |
| policy_id | String | Tatum policy ID | e.g. AWS-IAM-005 |
| policy_name | String | Tatum policy name | e.g. Check MFA for all access |
| severity | String | Severity | e.g. HIGH, MEDIUM, LOW |
| asset_count | Integer | Asset count | Number of target assets. |
| pass_count | Integer | Pass count | The number of assets that passed the policy check. |
| fail_count | Integer | Fail count | The number of assets that failed the policy check. |
| unknown_count | Integer | Unknown count | The number of assets that were not checked. |
| policy_summary | String | Policy summary | Brief description of the policy. |
| policy_detail | String | Policy detail | Detailed description of the policy. |
| policy_criteria | String | Policy criteria | Criteria for determining good/vulnerable status. |
| policy_audit | String | Policy audit | Audit methods and procedures. |
| policy_remediation | String | Policy remediation | Remediation methods and guidelines. |
| policy_reference | String | Policy reference | Reference to the policy. |
| policy_display_id | String | Policy display ID | e.g. AWS-IAM-005 |
| policy_setting_path | String | Policy setting path info. | Configuration-related paths. |
| policy_rule | String | Policy rule info. | Policy evaluation rules. |
| policy_state | String | Policy state info. | e.g. UPDATED |
| policy_count | Integer | Policy count | Number of policies. |
| policy_created_by | String | Policy created by | First editor. e.g. SYSTEM |
| policy_updated_by | String | Policy updated by | Last editor. e.g. SYSTEM |
| policy_change_version | Integer | Policy change version | e.g. 26 |
| is_not_reported | Bool | Is not reported | true or false |
| scan_report_created | Date | Scan report created time | Creation date and time. |
| scan_report_updated | Date | Scan report updated time | Last updated date and time. |