AWS Security ChangesHomeSearch

AWS config documentation change

Service: config · 2025-12-10 · Documentation low

File: config/latest/developerguide/DocumentHistory.md

Summary

Updated references from 'AWS Security Hub' to 'AWS Security Hub CSPM' in multiple entries, indicating expanded integration with Cloud Security Posture Management features

Security assessment

The changes specify CSPM (Cloud Security Posture Management) integration, which is a security feature. However, there's no indication of addressing a specific vulnerability or security incident - this appears to be documentation refinement for an existing security capability.

Diff

diff --git a/config/latest/developerguide/DocumentHistory.md b/config/latest/developerguide/DocumentHistory.md
index 54e9d7310..8c8a200f7 100644
--- a//config/latest/developerguide/DocumentHistory.md
+++ b//config/latest/developerguide/DocumentHistory.md
@@ -146 +146 @@ Security IAM update| The `AWSConfigServiceRolePolicy` policy and `AWS_ConfigRole
-AWS Config supports new resources types| With this release, you can use AWS Config to record configuration changes to new Amazon App Integrations, Amazon Elastic Compute Cloud (Amazon EC2), Amazon Inspector, Amazon Macie, Amazon Route 53 Profiles, Amazon OpenSearch Serverless, Amazon Simple Storage Service (Amazon S3), AWS Security Hub, and Amazon SageMaker AI resource types. For more information, see [Supported Resource Types](https://docs.aws.amazon.com/config/latest/developerguide/resource-config-reference.html).| April 30, 2025  
+AWS Config supports new resources types| With this release, you can use AWS Config to record configuration changes to new Amazon App Integrations, Amazon Elastic Compute Cloud (Amazon EC2), Amazon Inspector, Amazon Macie, Amazon Route 53 Profiles, Amazon OpenSearch Serverless, Amazon Simple Storage Service (Amazon S3), AWS Security Hub CSPM, and Amazon SageMaker AI resource types. For more information, see [Supported Resource Types](https://docs.aws.amazon.com/config/latest/developerguide/resource-config-reference.html).| April 30, 2025  
@@ -149 +149 @@ AWS Config updates managed rules| With this release, AWS Config supports the fol
-Security IAM update| The `AWSConfigServiceRolePolicy` policy and `AWS_ConfigRole` policy now grant additional permissions for AWS B2B Data Interchange, Amazon Bedrock, AWS Clean Rooms, AWS CodeConnections, AWS Direct Connect, AWS Database Migration Service (AWS DMS), Amazon CloudWatch Logs, Amazon Macie, Amazon Managed Blockchain, Amazon Q Business, Route 53 Profiles, Amazon Simple Storage Service (Amazon S3), Amazon SageMaker AI, AWS Security Hub, and AWS Systems Manager Incident Manager, AWS Systems Manager Incident Manager Contacts, and AWS Systems Manager. For more information, see [AWS managed policies for AWS Config](https://docs.aws.amazon.com/config/latest/developerguide/security-iam-awsmanpol.html). | April 8, 2025  
+Security IAM update| The `AWSConfigServiceRolePolicy` policy and `AWS_ConfigRole` policy now grant additional permissions for AWS B2B Data Interchange, Amazon Bedrock, AWS Clean Rooms, AWS CodeConnections, AWS Direct Connect, AWS Database Migration Service (AWS DMS), Amazon CloudWatch Logs, Amazon Macie, Amazon Managed Blockchain, Amazon Q Business, Route 53 Profiles, Amazon Simple Storage Service (Amazon S3), Amazon SageMaker AI, AWS Security Hub CSPM, and AWS Systems Manager Incident Manager, AWS Systems Manager Incident Manager Contacts, and AWS Systems Manager. For more information, see [AWS managed policies for AWS Config](https://docs.aws.amazon.com/config/latest/developerguide/security-iam-awsmanpol.html). | April 8, 2025  
@@ -527 +527 @@ AWS Config supports new resources types| With this release, you can use AWS Conf
-Service limits increase for the maximum number of AWS Config Rules per Region per account| With this release, AWS Config supports 1000 AWS Config rules per AWS Region per account. This increase applies to the total of all deployed rules including AWS Config managed rules, AWS Config custom rules, AWS Config conformance packs, AWS Security Hub controls, AWS Firewall Manager policies, and AWS Backup backup plans per Region per account. For more information, see [Service Limits](https://docs.aws.amazon.com/config/latest/developerguide/configlimits.html).| December 19, 2023  
+Service limits increase for the maximum number of AWS Config Rules per Region per account| With this release, AWS Config supports 1000 AWS Config rules per AWS Region per account. This increase applies to the total of all deployed rules including AWS Config managed rules, AWS Config custom rules, AWS Config conformance packs, AWS Security Hub CSPM controls, AWS Firewall Manager policies, and AWS Backup backup plans per Region per account. For more information, see [Service Limits](https://docs.aws.amazon.com/config/latest/developerguide/configlimits.html).| December 19, 2023  
@@ -915 +915 @@ AWS Config updates managed rules| With this release, AWS Config supports the fol
-AWS Config Integration with AWS Security Hub| With this release, you can see the results of AWS Config managed and custom rule evaluations as findings in AWS Security Hub. Security Hub transforms rule evaluations into findings, which provide more information about the impacted resources, such as the Amazon Resource Name (ARN) and creation date. These findings can be viewed alongside other Security Hub findings, providing a comprehensive overview of your security posture. For more information, see [Sending Rule Evaluations to Security Hub](https://docs.aws.amazon.com/config/latest/developerguide/evaluate-config_manage-rules.html#setting-up-aws-config-rules-with-console-integration)| June 7, 2022  
+AWS Config Integration with AWS Security Hub CSPM| With this release, you can see the results of AWS Config managed and custom rule evaluations as findings in AWS Security Hub CSPM. Security Hub CSPM transforms rule evaluations into findings, which provide more information about the impacted resources, such as the Amazon Resource Name (ARN) and creation date. These findings can be viewed alongside other Security Hub CSPM findings, providing a comprehensive overview of your security posture. For more information, see [Sending Rule Evaluations to Security Hub CSPM](https://docs.aws.amazon.com/config/latest/developerguide/evaluate-config_manage-rules.html#setting-up-aws-config-rules-with-console-integration)| June 7, 2022