AWS Security ChangesHomeSearch

AWS securityhub documentation change

Service: securityhub · 2025-12-10 · Documentation low

File: securityhub/latest/partnerguide/product-readiness-checklist.md

Summary

Updated all references from 'Security Hub' to 'Security Hub CSPM' throughout the document, including team names, integration terminology, and console references.

Security assessment

The changes are purely branding/nomenclature updates (adding 'CSPM' to Security Hub references). No security vulnerabilities, weaknesses, or incident responses are mentioned. The content about security practices (like finding uniqueness, latency minimization, and heartbeat findings) remains unchanged except for terminology.

Diff

diff --git a/securityhub/latest/partnerguide/product-readiness-checklist.md b/securityhub/latest/partnerguide/product-readiness-checklist.md
index ccc2f6d10..a307f5dc6 100644
--- a//securityhub/latest/partnerguide/product-readiness-checklist.md
+++ b//securityhub/latest/partnerguide/product-readiness-checklist.md
@@ -9 +9 @@ ASFF mappingIntegration setup and functionDocumentationProduct card informationM
-The AWS Security Hub and APN Partner teams use this checklist to validate that the integration is ready to be launched.
+The AWS Security Hub CSPM and APN Partner teams use this checklist to validate that the integration is ready to be launched.
@@ -51 +51 @@ The `FirstObservedAt` timestamp is intended to record the time when a finding wa
-All findings in Security Hub are indexed on the finding identifier (`Id` attribute). This value must always be unique to ensure that findings are not updated accidentally.
+All findings in Security Hub CSPM are indexed on the finding identifier (`Id` attribute). This value must always be unique to ensure that findings are not updated accidentally.
@@ -107 +107 @@ These questions are related to the setup and day-to-day function of the integrat
-**Does the partner provide an infrastructure-as-code (IaC) template to deploy the integration with Security Hub, such as Terraform, CloudFormation, or AWS Cloud Development Kit (AWS CDK)?**
+**Does the partner provide an infrastructure-as-code (IaC) template to deploy the integration with Security Hub CSPM, such as Terraform, CloudFormation, or AWS Cloud Development Kit (AWS CDK)?**
@@ -114 +114 @@ CloudFormation is preferred, but AWS CDK or Terraform can also be used.
-**Does the partner product have a one-click setup on their console for their integration with Security Hub?**
+**Does the partner product have a one-click setup on their console for their integration with Security Hub CSPM?**
@@ -122 +122 @@ Some partner products use a toggle or a similar mechanism in their product to ac
-You should generally only send findings that have security value to Security Hub customers.
+You should generally only send findings that have security value to Security Hub CSPM customers.
@@ -124 +124 @@ You should generally only send findings that have security value to Security Hub
-Security Hub is not a general log management tool. You should not send every possible log to Security Hub.
+Security Hub CSPM is not a general log management tool. You should not send every possible log to Security Hub CSPM.
@@ -129 +129 @@ Security Hub is not a general log management tool. You should not send every pos
-Numbers of unique findings are used to calculate load on Security Hub. A unique finding is defined as a finding with a different ASFF mapping from another finding.
+Numbers of unique findings are used to calculate load on Security Hub CSPM. A unique finding is defined as a finding with a different ASFF mapping from another finding.
@@ -162 +162 @@ If you take action on findings, you can use the [`BatchUpdateFindings`](https://
-**Does the partner provide information on the amount of latency between when a finding is created and when it is sent from their product to Security Hub?**
+**Does the partner provide information on the amount of latency between when a finding is created and when it is sent from their product to Security Hub CSPM?**
@@ -165 +165 @@ If you take action on findings, you can use the [`BatchUpdateFindings`](https://
-You should minimize latency to ensure that customers see findings as soon as possible in Security Hub.
+You should minimize latency to ensure that customers see findings as soon as possible in Security Hub CSPM.
@@ -169 +169 @@ This information is required in the manifest.
-**If the partner's architecture is to send findings to Security Hub from a customer account, have they demonstrated this successfully? If the partner's architecture is to send findings to Security Hub from their own account, have they demonstrated this successfully?**
+**If the partner's architecture is to send findings to Security Hub CSPM from a customer account, have they demonstrated this successfully? If the partner's architecture is to send findings to Security Hub CSPM from their own account, have they demonstrated this successfully?**
@@ -176 +176 @@ Sending a finding from the product ARN owner's account can bypass certain error
-**Does the partner provide a heartbeat finding to Security Hub?**
+**Does the partner provide a heartbeat finding to Security Hub CSPM?**
@@ -183 +183 @@ This is important if you send findings from a product account.
-**Did the partner integrate with the Security Hub product team's account during testing?**
+**Did the partner integrate with the Security Hub CSPM product team's account during testing?**
@@ -186 +186 @@ This is important if you send findings from a product account.
-During preproduction validation, you should send finding examples to the Security Hub product team's AWS account. These examples demonstrate that the findings are sent and mapped correctly.
+During preproduction validation, you should send finding examples to the Security Hub CSPM product team's AWS account. These examples demonstrate that the findings are sent and mapped correctly.
@@ -199 +199 @@ Hosting documentation on GitHub does not satisfy the dedicated website requireme
-**Does the partner documentation provide instructions on how to set up the Security Hub integration?**
+**Does the partner documentation provide instructions on how to set up the Security Hub CSPM integration?**
@@ -214 +214 @@ You should provide the rationale for the types of findings that you send.
-For example, your product might produce findings for vulnerabilities, malware, and antivirus, but you only send vulnerability and malware findings to Security Hub. In that case, you must provide a rationale for why you do not send antivirus findings.
+For example, your product might produce findings for vulnerabilities, malware, and antivirus, but you only send vulnerability and malware findings to Security Hub CSPM. In that case, you must provide a rationale for why you do not send antivirus findings.
@@ -229 +229 @@ Give customers information about how you retain state, ensure idempotency, and o
-Minimize latency to ensure that customers see findings as soon as possible in Security Hub.
+Minimize latency to ensure that customers see findings as soon as possible in Security Hub CSPM.
@@ -254 +254 @@ Note Regions that are or are not supported so that customers know in which Regio
-These questions are related to the card for the product that is displayed on the **Integrations** page of the Security Hub console.
+These questions are related to the card for the product that is displayed on the **Integrations** page of the Security Hub CSPM console.
@@ -274 +274 @@ The configuration link should lead to your online documentation. It should not l
-If you provide a purchase link, it must be for an AWS Marketplace entry. Security Hub does not accept purchase links that are not hosted by AWS.
+If you provide a purchase link, it must be for an AWS Marketplace entry. Security Hub CSPM does not accept purchase links that are not hosted by AWS.
@@ -294 +294 @@ These questions are related to marketing for the integration.
-**Is the product description for the Security Hub partners page within 700 characters, including spaces?**
+**Is the product description for the Security Hub CSPM partners page within 700 characters, including spaces?**
@@ -297 +297 @@ These questions are related to marketing for the integration.
-The Security Hub partners page only accepts up to 700 characters, including spaces.
+The Security Hub CSPM partners page only accepts up to 700 characters, including spaces.
@@ -301 +301 @@ The team will edit down longer descriptions.
-**Is the Security Hub partners page logo no larger than 600 x 300 px?**
+**Is the Security Hub CSPM partners page logo no larger than 600 x 300 px?**
@@ -306 +306 @@ Provide a publicly accessible URL with a company logo in PNG or JPG that is no l
-**Does the Learn more hyperlink on the Security Hub partners page lead to the partner's dedicated webpage about the integration?**
+**Does the Learn more hyperlink on the Security Hub CSPM partners page lead to the partner's dedicated webpage about the integration?**
@@ -342 +342 @@ You can create your own webinars to showcase the integration.
-If you require assistance from the Security Hub team, work with the product team after you complete the testing with the private product ARN.
+If you require assistance from the Security Hub CSPM team, work with the product team after you complete the testing with the private product ARN.