ListCheckItems - Security Center - Alibaba Cloud Documentation Center

This topic is generated by a machine translation engine without any human intervention. ALIBABA CLOUD DOES NOT GUARANTEE THE ACCURACY OF MACHINE TRANSLATED CONTENT. To request a human-translated version of this topic or provide feedback on this translation, please include it in the feedback form.

List custom check items for situational awareness

Debugging

You can run this interface directly in OpenAPI Explorer, saving you the trouble of calculating signatures. After running successfully, OpenAPI Explorer can automatically generate SDK code samples.

Debug

Authorization information

The following table shows the authorization information corresponding to the API. The authorization information can be used in the Action policy element to grant a RAM user or RAM role the permissions to call this API operation. Description:

Operation: the value that you can use in the Action element to specify the operation on a resource.
Access level: the access level of each operation. The levels are read, write, and list.
Resource type: the type of the resource on which you can authorize the RAM user or the RAM role to perform the operation. Take note of the following items:
- For mandatory resource types, indicate with a prefix of * .
- If the permissions cannot be granted at the resource level, All Resources is used in the Resource type column of the operation.
Condition Key: the condition key that is defined by the cloud service.
Associated operation: other operations that the RAM user or the RAM role must have permissions to perform to complete the operation. To complete the operation, the RAM user or the RAM role must have the permissions to perform the associated operations.

Operation	Access level	Resource type	Condition key	Associated operation
yundun-sas:ListCheckItems	get	*CustomCheckItem `acs:yundun-sas:{#regionId}:{#accountId}:customcheckitem/{#CheckId}`	none	none

Request parameters

Parameter	Type	Required	Description	Example
CheckId	long	No	The ID of the check item.	100000000001
CheckShowName	string	No	The name of the custom check item.	testCheckItemName
CheckTypes	array	No	The source type of the situational awareness check item.
	string	No	The type of the check item (identifies whether the policy is a system check item or a user check item): CUSTOM: User-defined SYSTEM: System-defined	SYSTEM
Lang	string	No	The language type for requests and responses. The default value is zh. Values: zh: Chinese en: English	zh
Statuses	array	No	The status of the check item.
	string	No	The status of the check item. Values: EDIT: In editing RELEASE: Released	RELEASE
PageSize	integer	No	Specifies the maximum number of data entries to display per page when performing a paginated query. The default number of data entries displayed per page is 20, and if the PageSize parameter is empty, it will default to returning 20 data entries. Note It is recommended that the PageSize value is not left empty.	20
CurrentPage	integer	No	Specifies the page number to display when performing a paginated query. The starting value is 1, and the default value is 1.	1

Response parameters

Parameter	Type	Description	Example
	object	The response body of the API.
RequestId	string	The ID of the current request, which is a unique identifier generated by Alibaba Cloud for this request and can be used for troubleshooting and problem localization.	7BC55C8F-226E-5AF5-9A2C-2EC43864****
CheckItems	array<object>	Information about the check items.
CheckItems	object	Information about the check items.
CheckId	long	The ID of the check item.	100000000001
CheckShowName	string	The name of the check item.	testCheckItemName
Vendor	string	The cloud asset vendor.	ALIYUN
InstanceType	string	The asset type of the cloud product.	ECS
InstanceSubType	string	The sub-type of the cloud product's asset.	DISK
RiskLevel	string	The risk level of the check item. Values: HIGH: High risk MEDIUM: Medium risk LOW: Low risk	HIGH
Status	string	The status of the check item. Values: EDIT: In editing RELEASE: Released	EDIT
CheckPolicies	array<object>	A list of standard, regulation, and section information associated with the check result.
checkPolicy	object	检查结果关联的标准、条例、章节信息。
StandardId	long	检查项的标准 ID。	10000000001
StandardShowName	string	The display name of the standard for the check item.	testStandardShowName
RequirementId	long	The ID of the requirement for the check item.	10000000001
RequirementShowName	string	The display name of the requirement for the check item.	testRequirementShowName
SectionId	long	The ID of the section for the check item.	10000000001
SectionShowName	string	The display name of the section for the check item.	testSectionShowName
Type	string	The name of the associated policy category: AISPM：AI Configuration Management (AI-SPM) KISPM：Kubernetes Configuration Management (KSPM) IDENTITY_PERMISSION：Identity and Permission Management (CIEM) RISK：Security Risk COMPLIANCE：Compliance Risk	AISPM
Description	object	The description information of the check item.
Type	string	The type of the check description attribute. Values: text：Text	text
Value	string	The specific content of the description.	custom description.
Solution	object	The solution information for the check item.
Type	string	The type of the check item solution information. Values: text：Text	text
Value	string	The content of the solution for the check item risk.	test solution.
AssistInfo	object	The help information for the check item.
Type	string	The type of the help information for the check item risk. Values: text：Text	text
Value	string	The content of the help information for the check item risk.	test assistInfo.
CheckRule	string	自定义检查项定义规则。	{"AssociatedData":{"ToDataList":[{"DataName":"ACS_ECS_Instance","PropertyPath":"InstanceId","FromPropertyPath":"InstanceId"}]},"MatchProperty":{"Operator":"AND","MatchProperties":[{"DataName":"ACS_ECS_Disk","PropertyPath":"InstanceId","MatchOperator":"EQ","MatchPropertyValue":"testId"},{"DataName":"ACS_ECS_Instance","PropertyPath":"InstanceId","MatchOperator":"EQ","MatchPropertyValue":"testInstanceId"}]}}
CheckType	string	The source type of the Security Posture check item: CUSTOM: User-defined SYSTEM: Predefined by the Security Posture platform	SYSTEM
Remark	string	Remark information.	remark.
PageInfo	object	Page information for paginated queries.
TotalCount	integer	Total number of data entries found.	100
Count	integer	Number of data entries displayed on the current page in a paginated query.	20
CurrentPage	integer	The page number of the current page when performing a paginated query.	1
PageSize	integer	The maximum number of records displayed per page when performing a paginated query.	20

Examples

Sample success responses

JSONformat

{
  "RequestId": "7BC55C8F-226E-5AF5-9A2C-2EC43864****",
  "CheckItems": [
    {
      "CheckId": 100000000001,
      "CheckShowName": "testCheckItemName",
      "Vendor": "ALIYUN",
      "InstanceType": "ECS",
      "InstanceSubType": "DISK",
      "RiskLevel": "HIGH",
      "Status": "EDIT",
      "CheckPolicies": [
        {
          "StandardId": 10000000001,
          "StandardShowName": "testStandardShowName",
          "RequirementId": 10000000001,
          "RequirementShowName": "testRequirementShowName",
          "SectionId": 10000000001,
          "SectionShowName": "testSectionShowName",
          "Type": "AISPM"
        }
      ],
      "Description": {
        "Type": "text",
        "Value": "custom description."
      },
      "Solution": {
        "Type": "text",
        "Value": "test solution."
      },
      "AssistInfo": {
        "Type": "text",
        "Value": "test assistInfo."
      },
      "CheckRule": {
        "AssociatedData": {
          "ToDataList": [
            {
              "DataName": "ACS_ECS_Instance",
              "PropertyPath": "InstanceId",
              "FromPropertyPath": "InstanceId"
            }
          ]
        },
        "MatchProperty": {
          "Operator": "AND",
          "MatchProperties": [
            {
              "DataName": "ACS_ECS_Disk",
              "PropertyPath": "InstanceId",
              "MatchOperator": "EQ",
              "MatchPropertyValue": "testId"
            },
            {
              "DataName": "ACS_ECS_Instance",
              "PropertyPath": "InstanceId",
              "MatchOperator": "EQ",
              "MatchPropertyValue": "testInstanceId"
            }
          ]
        }
      },
      "CheckType": "SYSTEM",
      "Remark": "remark."
    }
  ],
  "PageInfo": {
    "TotalCount": 100,
    "Count": 20,
    "CurrentPage": 1,
    "PageSize": 20
  }
}

Error codes

HTTP status code	Error code	Error message	Description
400	ParamIllegal.%s	The parameter %s is invalid, please fill it in again.	Invalid parameter, please fill in again

For a list of error codes, visit the Service error codes.

Change history

Change time	Summary of changes	Operation
2025-11-13	Add Operation	View Change Details