AWS Security ChangesHomeSearch

AWS detective documentation change

Service: detective · 2025-12-10 · Documentation low

File: detective/latest/userguide/analyzing-findings.md

Summary

Updated Security Hub reference to Security Hub CSPM for findings ingestion

Security assessment

Specifies CSPM as source of security findings but doesn't indicate security vulnerability being patched

Diff

diff --git a/detective/latest/userguide/analyzing-findings.md b/detective/latest/userguide/analyzing-findings.md
index fde280bea..50a16e709 100644
--- a//detective/latest/userguide/analyzing-findings.md
+++ b//detective/latest/userguide/analyzing-findings.md
@@ -7 +7 @@
-A finding is an instance of potentially malicious activity or other risk that was detected. Amazon GuardDuty and AWS security findings are loaded into Amazon Detective so that you can use Detective to investigate the activity associated with the involved entities. GuardDuty findings are part of the Detective core package and are ingested by default. All other AWS security findings that are aggregated by Security Hub are ingested as an optional data source. See [Source data used in a behavior graph](https://docs.aws.amazon.com//detective/latest/userguide/detective-source-data-about.html) for more details.
+A finding is an instance of potentially malicious activity or other risk that was detected. Amazon GuardDuty and AWS security findings are loaded into Amazon Detective so that you can use Detective to investigate the activity associated with the involved entities. GuardDuty findings are part of the Detective core package and are ingested by default. All other AWS security findings that are aggregated by Security Hub CSPM are ingested as an optional data source. See [Source data used in a behavior graph](https://docs.aws.amazon.com//detective/latest/userguide/detective-source-data-about.html) for more details.