AWS Security ChangesHomeSearch

AWS config documentation change

Service: config · 2026-07-04 · Documentation medium

File: config/latest/developerguide/ec2-security-group-attached-to-eni.md

Summary

Expanded rule scope to check security group attachments to EC2 instances (previously only checked ENI attachments).

Security assessment

Enhances coverage of security group monitoring but doesn't address specific vulnerabilities or add new security features.

Diff

diff --git a/config/latest/developerguide/ec2-security-group-attached-to-eni.md b/config/latest/developerguide/ec2-security-group-attached-to-eni.md
index 64c9890c5..155db4df1 100644
--- a//config/latest/developerguide/ec2-security-group-attached-to-eni.md
+++ b//config/latest/developerguide/ec2-security-group-attached-to-eni.md
@@ -11 +11 @@ AWS CloudFormation template
-Checks if non-default security groups are attached to elastic network interfaces. The rule is NON_COMPLIANT if the security group is not associated with a network interface. 
+Checks that non-default security groups are attached to Amazon Elastic Compute Cloud (EC2) instances or an elastic network interfaces (ENIs). The rule returns NON_COMPLIANT if the security group is not associated with an EC2 instance or an ENI.