AWS Security ChangesHomeSearch

AWS AmazonCloudWatch documentation change

Service: AmazonCloudWatch · 2025-10-16 · Documentation medium

File: AmazonCloudWatch/latest/monitoring/Investigations-Retention.md

Summary

Added section on incident report retention policy and recommendation to copy reports externally for retention beyond the investigation period

Security assessment

The change documents retention policies for incident reports, which is a security best practice but does not address a specific security vulnerability. It helps users maintain compliance with data retention requirements.

Diff

diff --git a/AmazonCloudWatch/latest/monitoring/Investigations-Retention.md b/AmazonCloudWatch/latest/monitoring/Investigations-Retention.md
index 8dd8c8d1c..dc4c71dfb 100644
--- a//AmazonCloudWatch/latest/monitoring/Investigations-Retention.md
+++ b//AmazonCloudWatch/latest/monitoring/Investigations-Retention.md
@@ -4,0 +5,2 @@
+Incident report retention
+
@@ -18,0 +21,8 @@ Investigations conducted without configuring your CloudWatch investigations sett
+## Incident report retention
+
+Incident reports generated from investigations follow the same retention policy as their parent investigations. 
+
+We recommend copying important incident reports to external systems if you need to retain them beyond the investigation retention period.
+
+For more information, see [Generate incident reports](./Investigations-Incident-Reports.html).
+