AWS managedservices documentation change
Summary
Added markdown link placeholder and corrected two security control mappings in a table (swapped Neptune and DocumentDB controls)
Security assessment
This change fixes documentation errors in security control mappings between AWS Security Hub checks and remediation actions. While it corrects security documentation, there's no evidence it addresses an active security vulnerability or incident - it's a documentation correction.
Diff
diff --git a/managedservices/latest/userguide/tr-supported-checks.md b/managedservices/latest/userguide/tr-supported-checks.md index 57e6f0e4e..1348c8783 100644 --- a//managedservices/latest/userguide/tr-supported-checks.md +++ b//managedservices/latest/userguide/tr-supported-checks.md @@ -0,0 +1,2 @@ +[View a markdown version of this page](tr-supported-checks.md) + @@ -86 +88 @@ Hs4Ma3G217 - CodeBuild project environments should have a logging AWS configurat -Hs4Ma3G306 - Neptune DB clusters should have deletion protection enabled Corresponding AWS Security Hub CSPM check: [DocumentDB.3](https://docs.aws.amazon.com/securityhub/latest/userguide/documentdb-controls.html#documentdb-3) | **AWSManagedServices-TrustedRemediatorDisablePublicAccessOnDocumentDBSnapshot** Removes public access from Amazon DocumentDB manual cluster snapshot. | No preconfigured parameters are allowed. No constraints +Hs4Ma3G306 - Neptune DB clusters should have deletion protection enabled Corresponding AWS Security Hub CSPM check: [Neptune.4](https://docs.aws.amazon.com/securityhub/latest/userguide/neptune-controls.html#neptune-4) | **AWSManagedServices-TrustedRemediatorEnableNeptuneDBClusterDeletionProtection** Enables deletion protection for Amazon Neptune cluster. | No preconfigured parameters are allowed. No constraints @@ -138 +140 @@ Hs4Ma3G135 - AWS KMS keys should not be deleted unintentionally Corresponding AW -Hs4Ma3G299 - Amazon DocumentDB manual cluster snapshots should not be public Corresponding AWS Security Hub CSPM check: [Neptune.4](https://docs.aws.amazon.com/securityhub/latest/userguide/neptune-controls.html#neptune-4) | **AWSManagedServices-TrustedRemediatorEnableNeptuneDBClusterDeletionProtection** Enables deletion protection for Amazon Neptune cluster. | No preconfigured parameters are allowed. No constraints +Hs4Ma3G299 - Amazon DocumentDB manual cluster snapshots should not be public Corresponding AWS Security Hub CSPM check: [DocumentDB.3](https://docs.aws.amazon.com/securityhub/latest/userguide/documentdb-controls.html#documentdb-3) | **AWSManagedServices-TrustedRemediatorDisablePublicAccessOnDocumentDBSnapshot** Removes public access from Amazon DocumentDB manual cluster snapshot. | No preconfigured parameters are allowed. No constraints