AWS solutions documentation change
Summary
Updated resource names from SHARR to ASR (Automated Security Response) in EventBridge rule, Step Functions, and CloudWatch Log Group references
Security assessment
This change appears to be a rebranding/renaming of solution components without any indication of addressing security vulnerabilities. The naming updates maintain existing security functionality but don't introduce new security features or address specific vulnerabilities.
Diff
diff --git a/solutions/latest/automated-security-response-on-aws/trace-the-execution.md b/solutions/latest/automated-security-response-on-aws/trace-the-execution.md index 2d3d647f2..46e097abd 100644 --- a//solutions/latest/automated-security-response-on-aws/trace-the-execution.md +++ b//solutions/latest/automated-security-response-on-aws/trace-the-execution.md @@ -13 +13 @@ To understand better how the solution works, you can trace the execution of the -In the admin account, locate an EventBridge rule named **Remediate_with_SHARR_CustomAction**. This rule matches the finding you sent from Security Hub and sends it to the Orchestrator Step Functions. +In the admin account, locate an EventBridge rule named **Remediate_with_ASR_CustomAction**. This rule matches the finding you sent from Security Hub and sends it to the Orchestrator Step Functions. @@ -17 +17 @@ In the admin account, locate an EventBridge rule named **Remediate_with_SHARR_Cu -In the admin account, locate the AWS Step Functions named "**SO0111-SHARR-Orchestrator** ". This step function calls the SSM Automation document in the target account and Region. You can trace the execution of the remediation in the execution history of this AWS Step Functions. +In the admin account, locate the AWS Step Functions named "**SO0111-ASR-Orchestrator** ". This step function calls the SSM Automation document in the target account and Region. You can trace the execution of the remediation in the execution history of this AWS Step Functions. @@ -27 +27 @@ The first execution is from the orchestrator step function in the target account -In the admin account, navigate to the CloudWatch Logs console and locate a Log Group named "**SO0111-SHARR** ". This log group is the destination for high-level logs from the Orchestrator Step Functions. +In the admin account, navigate to the CloudWatch Logs console and locate a Log Group named "**SO0111-ASR** ". This log group is the destination for high-level logs from the Orchestrator Step Functions.