Supported resource types for exposure findings in Security Hub

Note

Security Hub is in preview release and is subject to change.

Security Hub generates exposure findings for the following AWS resource types:

AWS::DynamoDB::Table
AWS::EC2::Instance
AWS::ECS::Service
AWS::EKS::Cluster
AWS::IAM::User
AWS::Lambda::Function
AWS::RDS::DBInstance
AWS::S3::Bucket

Security Hub generates one exposure finding per resource. If a resource doesn't have any exposure traits or has insufficient traits, Security Hub doesn't generate an exposure finding for that resource.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Exposure findings

Supported traits