cloudformation-coverage-roadmap icon indicating copy to clipboard operation
cloudformation-coverage-roadmap copied to clipboard

Published 20 hours ago verified publisher icon aws-cloudformation

AWS::GuardDuty - [Coverage] - Add export findings configuration

Open zBart opened this issue 1 year ago • 0 comments
trafficstars

Name of the resource

AWS::GuardDuty::Detector

Resource name

AWS::GuardDuty::PublishingConfiguration

Description

Currently it is not possible to configure the findings S3 bucket for an AWS GuardDuty detector. This means it is not possible to configure automatic exporting of findings to an S3 bucket.

Docs:

  • https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_exportfindings.html

Relevant API's:

  • https://docs.aws.amazon.com/guardduty/latest/APIReference/API_CreatePublishingDestination.html
  • https://docs.aws.amazon.com/guardduty/latest/APIReference/API_UpdatePublishingDestination.html
  • https://docs.aws.amazon.com/guardduty/latest/APIReference/API_DeletePublishingDestination.html

Not sure if this should be part of the existing AWS::GuardDuty::Dectector resource, as its a separate API it might warrant a new AWS::GuardDuty::PublishingConfiguration resource.

Other Details

No response

zBart avatar Jul 31 '24 12:07 zBart