AWS Security ChangesHomeSearch

AWS security-lake documentation change

Service: security-lake · 2025-04-01 · Documentation low

File: security-lake/latest/userguide/opensearch-integration.md

Summary

Removed 'OpenSearch Service direct query' section and updated headers

Security assessment

Content restructuring/removal of a feature description without evidence of security vulnerability remediation.

Diff

diff --git a/security-lake/latest/userguide/opensearch-integration.md b/security-lake/latest/userguide/opensearch-integration.md
index fb300f560..1e8ff7fa5 100644
--- a/security-lake/latest/userguide/opensearch-integration.md
+++ b/security-lake/latest/userguide/opensearch-integration.md
@@ -5 +5 @@
-OpenSearch Service dashboardOpenSearch Service direct query
+OpenSearch Service dashboard
@@ -19,13 +18,0 @@ After OpenSearch Service Ingestion starts writing your data into your OpenSearch
-## OpenSearch Service direct query
-
-You can use OpenSearch Service direct query to analyze data in Amazon Security Lake. OpenSearch Service provides a zero-ETL integration as a way to directly query your data in Security Lake using OpenSearch SQL or OpenSearch Piped Processing Language (PPL) without incurring the friction of building ingestion pipelines or switching between analytics tools. This approach eliminates the need for data movement or duplication, allowing you to analyze your data where it rests using OpenSearch's Discover experience in OpenSearch Dashboards. When you want to switch from querying data at rest to actively monitoring with dashboards, you can build indexed views on your query results and ingest it into an OpenSearch Service index. For more information on direct queries, see [Working with direct queries](https://docs.aws.amazon.com/opensearch-service/latest/developerguide/direct-query-s3.html) in the Amazon OpenSearch Service Developer Guide. 
-
-OpenSearch Service uses a OpenSearch Serverless collection to directly query the data in Security Lake and store your indexed views. To do this, you create a data source that enables you to use OpenSearch zero-ETL capabilities on Security Lake data. When you create a data source you can directly search, gain insights from, and analyze data stored in Security Lake. You can accelerate your query performance and use advanced OpenSearch analytics on select Security Lake data sets using on-demand indexing. 
-
-  * For details on how to create the OpenSearch data source integration, see [Creating an Amazon Security Lake data source integration](https://docs.aws.amazon.com/opensearch-service/latest/developerguide/direct-query-security-lake-creating.html) in the Amazon OpenSearch Service Developer Guide. 
-
-  * For details on how to configure Security Lake data source in OpenSearch, see [Configuring a Security Lake data source in OpenSearch Dashboards](https://docs.aws.amazon.com/opensearch-service/latest/developerguide/direct-query-security-lake-configure.html) in the Amazon OpenSearch Service Developer Guide.
-
-
-
-
@@ -38 +25 @@ To use the Amazon Web Services Documentation, Javascript must be enabled. Please
-AWS service integrations
+Detective integration
@@ -40 +27 @@ AWS service integrations
-Third-party integrations
+OpenSearch Ingestion pipeline integration