search

aws-solutions / automated-security-response-on-aws

Automated Security Response on AWS is an add-on solution that works with AWS Security Hub to provide a ready-to-deploy architecture and a library of automated playbooks. The solution makes it easier for AWS Security Hub customers to resolve common security findings and to improve their security posture in AWS.
https://aws.amazon.com/solutions/implementations/aws-security-hub-automated-response-and-remediation/
Apache License 2.0
359 stars 102 forks source link

SC_SNS.2 Not executing due to wrong automation document #168

Closed Bradfordio closed 3 months ago

Bradfordio commented 1 year ago

Describe the bug

When executing ASR-SC_2.0.0_SNS.2 the automation returns 'Invalid document: ASR-EnableDeliveryLoggingForSNSTopic' When executing ASR-ASFBP_SNS.2 the automation succeeds as it executes the document 'ASR-EnableDeliveryStatusLoggingForSNSTopic' which is the correct name for the deployed remediation document

The automation document for ASR-SC_2.0.0_SNS.2 has an incorrect name for the remediation document,

To Reproduce

Execute ASR-SC_2.0.0_SNS.2

Expected behavior

Both SC and ASFBP SNS.2 should execute the same remediation document and the automation should execute successfully

Please complete the following information about the solution:

Additional context https://github.com/aws-solutions/automated-security-response-on-aws/blob/main/source/playbooks/AFSBP/ssmdocs/AFSBP_SNS.2.yaml)

https://github.com/aws-solutions/automated-security-response-on-aws/blob/main/source/playbooks/SC/ssmdocs/SC_SNS.2.ts

AaronSchuetter commented 6 months ago

This will be fixed in the next release.

AaronSchuetter commented 3 months ago

Fixed in v2.1.0