Can AWS CloudFormation templates for AWS Inspector add an SNS Topic

+1 vote

I've created some CloudFormation templates to deploy Inspector Templates/Targets and associated Lambda functions that parse the outputs and deliver findings to Slack. Is it possible to include in the CF template for Inspector an SNS Topic association as is done when creating a template in the Inspector portal?

It is not an available parameter of AWS::Inspector::AssessmentTemplate. Is this something I will just have to add manually via the portal?

Jul 30, 2018 in AWS by bug_seeker
• 15,550 points

1 answer to this question.

+1 vote

I see the SNS option is available only in the UI and CLI/API, I guess the UI/CLI creates Cloudwatch Events rule for you in the background, you create your own rule using AWS::Events::Rule

Reference: Event Patterns

EventRule: Type:


Properties: Description:



source: - "aws.inspector"

detail-type: - "AWS API Call via CloudTrail"

resources: - arn:aws:inspector:us-west-2:123456789012:target/0-nvgVhaxX/template/0-7sbz2Kz0 detail:

eventSource: - ""


State: "ENABLED"

Targets: - arn:aws:sns:us-west-2:123456789012:exampletopic

answered Jul 30, 2018 by Priyaj
• 58,140 points
Hi. Unfortunately the events tracked via CloudTrail API calls (from looking at the CloudTrail logs) relate to assessment runs starts events themselves (StartAssessmentRun) rather than the messages that the assessment runs send out (ASSESSMENT_RUN_STARTED, ASSESSMENT_RUN_COMPLETED, FINDING_REPORTED etc.).

Related Questions In AWS

0 votes
2 answers

How do I add python libraries to an AWS lambda function for Alexa?

If you get lucky (it depends what ...READ MORE

answered Nov 3, 2020 in AWS by anonymous
+3 votes
1 answer

aws cloudformation for atomic stack-update

When you perform a stack update, only ...READ MORE

answered Mar 27, 2018 in AWS by DareDev
• 6,890 points
0 votes
1 answer
0 votes
1 answer
0 votes
2 answers