AWS Security ChangesHomeSearch

AWS securityhub documentation change

Service: securityhub · 2026-06-04 · Documentation low

File: securityhub/latest/userguide/securityhub-v2-concepts.md

Summary

Added documentation about service-linked configuration recorder creation when both Security Hub and Security Hub CSPM are enabled

Security assessment

The change provides operational information about automatic resource creation but doesn't address any security vulnerability or weakness. It simply clarifies system behavior under specific configuration conditions.

Diff

diff --git a/securityhub/latest/userguide/securityhub-v2-concepts.md b/securityhub/latest/userguide/securityhub-v2-concepts.md
index b7353c642..5b8585073 100644
--- a//securityhub/latest/userguide/securityhub-v2-concepts.md
+++ b//securityhub/latest/userguide/securityhub-v2-concepts.md
@@ -152,0 +153 @@ A type of AWS Config recorder that is used to record configuration data on servi
+  * If Security Hub and Security Hub CSPM are both enabled in an AWS account and AWS Region, a service-linked configuration recorder named `AWSConfigurationRecorderForSecurityHubCSPM` is created. 
@@ -155,0 +157,3 @@ A type of AWS Config recorder that is used to record configuration data on servi
+
+For more information, see [Considerations for service-linked configuration recorders](https://docs.aws.amazon.com/config/latest/developerguide/stop-start-recorder.html#stop-start-recorder-considerations-service-linked) and [Recording regional and global resources](https://docs.aws.amazon.com/config/latest/developerguide/select-resources.html#select-resources-all). 
+