chore(docs): add AWS Security Hub (#598)

* chore(docs): add AWS Security Hub * Update docs/integration/security-hub.md Co-authored-by: Simarpreet Singh <simar@linux.com> * Update README.md Co-authored-by: Liz Rice <liz@lizrice.com> Co-authored-by: Simarpreet Singh <simar@linux.com> Co-authored-by: Liz Rice <liz@lizrice.com>
2025-12-12 15:50:15 -08:00 · 2020-08-19 13:19:24 +03:00
parent 3a54e5b644
commit 80d5df0ceb
2 changed files with 36 additions and 6 deletions
--- a/docs/integration/security-hub.md
+++ b/docs/integration/security-hub.md
@@ -0,0 +1,29 @@
+# AWS Security Hub
+
+## Upload findings to Security Hub
+
+In the following example using the template `asff.tpl`, [ASFF](https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-findings-format.html) file can be generated.
+
+```
+$ AWS_REGION=us-west-1 AWS_ACCOUNT_ID=123456789012 trivy image --format template --template "@contrib/asff.tpl" -o report.asff golang:1.12-alpine
+```
+
+ASFF template needs AWS_REGION and AWS_ACCOUNT_ID from environment variables.
+
+Then, you can upload it with AWS CLI.
+
+```
+$ aws securityhub batch-import-findings --findings file://report.asff
+```
+
+## Customize
+You can customize [asff.tpl](../../contrib/asff.tpl).
+
+```
+$ export AWS_REGION=us-west-1
+$ export AWS_ACCOUNT_ID=123456789012
+$ trivy image --format template --template "@your-asff.tpl" -o report.asff golang:1.12-alpine
+```
+
+## Reference
+https://aws.amazon.com/blogs/security/how-to-build-ci-cd-pipeline-container-vulnerability-scanning-trivy-and-aws-security-hub/