# Cloud Resource Attributes

## Overview

When you first connect your AWS account to Panther, all resources are scanned and evaluated against the defined [policies](https://docs.panther.com/detections/policies).

See the [list of supported resources here](https://docs.panther.com/cloud-scanning/cloud-resource-attributes/aws). Each documentation page for a supported resource includes its schema and a description of each attribute. You can reference the [common fields](#common-fields) below in any policy, as they are shared across all resources.

To submit a feature request for a new resource, please contact Panther Support.

{% hint style="info" %}
A **resource** is an entity within your AWS account, such as an EC2 Instance, S3 Bucket, IAM User, and more.

A **meta resource** provides context on a given service for an entire account, which is useful in understanding whether or not it is configured. For example, the CloudTrail meta resource allows you to ensure at least one CloudTrail is set up in an account.
{% endhint %}

{% hint style="warning" %}
Each resource is limited to 400 KB. Resources exceeding this limit will not be saved.
{% endhint %}

## Common fields

The following attributes are shared across all resources and can be referenced in any policy in Panther:

| Field Name     | Description                                                                                                                                                                                                     |
| -------------- | --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
| `AccountId`    | The ID of the AWS Account the resource resides in                                                                                                                                                               |
| `Arn`          | The fully qualified Amazon Resource Name, if one exists                                                                                                                                                         |
| `Id`           | The AWS unique identifier, if one exists                                                                                                                                                                        |
| `Name`         | The AWS name, if one exists                                                                                                                                                                                     |
| `Region`       | The region the resource exists in, with a value of `GLOBAL_REGION` if the resource is not regional                                                                                                              |
| `ResourceId`   | The Panther unique identifier                                                                                                                                                                                   |
| `ResourceType` | The categorization of the resource, such as `AWS.EC2.Instance`                                                                                                                                                  |
| `Tags`         | A map of key/value pair labels that may be assigned to an AWS resource, when any exist                                                                                                                          |
| `TimeCreated`  | An [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp of when the resource was created. This is not set if the information is not provided by the AWS API or if not applicable, such as in Meta resources |