AWS cli documentation change
Summary
Added codeReviewId, codeReviewJobId, and codeLocations fields to findings output; updated CLI version and navigation links
Security assessment
The change adds documentation for new fields related to code vulnerability scanning (codeLocations with file paths, line numbers, and vulnerability roles), enhancing security feature documentation without addressing a specific vulnerability.
Diff
diff --git a/cli/latest/reference/securityagent/batch-get-findings.md b/cli/latest/reference/securityagent/batch-get-findings.md index 440150ac4..b7e024841 100644 --- a//cli/latest/reference/securityagent/batch-get-findings.md +++ b//cli/latest/reference/securityagent/batch-get-findings.md @@ -14,2 +14,2 @@ - * [previous](batch-get-artifact-metadata.html "batch-get-artifact-metadata") | - * [AWS CLI 2.34.45 Command Reference](../../index.html) » + * [previous](batch-get-code-reviews.html "batch-get-code-reviews") | + * [AWS CLI 2.34.48 Command Reference](../../index.html) » @@ -22 +22 @@ - * [← batch-get-artifact-metadata](batch-get-artifact-metadata.html "previous chapter \(use the left arrow\)") / + * [← batch-get-code-reviews](batch-get-code-reviews.html "previous chapter \(use the left arrow\)") / @@ -246,0 +247,8 @@ findings -> (list) +>> codeReviewId -> (string) +>> +>>> The unique identifier of the code review associated with the finding. +>> +>> codeReviewJobId -> (string) +>> +>>> The unique identifier of the code review job that produced the finding. +>> @@ -360,0 +369,24 @@ findings -> (list) +>> codeLocations -> (list) +>> +>>> The file locations involved in the vulnerability, as reported by the code scanner. +>>> +>>> (structure) +>>> +>>>> Represents a location in source code associated with a security finding. +>>>> +>>>> filePath -> (string) [required] +>>>> +>>>>> The absolute path to the file containing the code location. +>>>> +>>>> lineStart -> (integer) +>>>> +>>>>> The starting line number of the code location. +>>>> +>>>> lineEnd -> (integer) +>>>> +>>>>> The ending line number of the code location. +>>>> +>>>> label -> (string) +>>>> +>>>>> The role of this location in the vulnerability, such as source or sink. +>> @@ -375 +407 @@ notFound -> (list) - * [← batch-get-artifact-metadata](batch-get-artifact-metadata.html "previous chapter \(use the left arrow\)") / + * [← batch-get-code-reviews](batch-get-code-reviews.html "previous chapter \(use the left arrow\)") / @@ -384,2 +416,2 @@ notFound -> (list) - * [previous](batch-get-artifact-metadata.html "batch-get-artifact-metadata") | - * [AWS CLI 2.34.45 Command Reference](../../index.html) » + * [previous](batch-get-code-reviews.html "batch-get-code-reviews") | + * [AWS CLI 2.34.48 Command Reference](../../index.html) »