Can AWS CloudFormation templates for AWS Inspector add an SNS Topic

+1 vote

I've created some CloudFormation templates to deploy Inspector Templates/Targets and associated Lambda functions that parse the outputs and deliver findings to Slack. Is it possible to include in the CF template for Inspector an SNS Topic association as is done when creating a template in the Inspector portal?

It is not an available parameter of AWS::Inspector::AssessmentTemplate. Is this something I will just have to add manually via the portal?

Jul 30, 2018 in AWS by bug_seeker
• 15,400 points

1 answer to this question.

+1 vote

I see the SNS option is available only in the UI and CLI/API, I guess the UI/CLI creates Cloudwatch Events rule for you in the background, you create your own rule using AWS::Events::Rule

Reference: Event Patterns

EventRule: Type:


Properties: Description:



source: - "aws.inspector"

detail-type: - "AWS API Call via CloudTrail"

resources: - arn:aws:inspector:us-west-2:123456789012:target/0-nvgVhaxX/template/0-7sbz2Kz0 detail:

eventSource: - ""


State: "ENABLED"

Targets: - arn:aws:sns:us-west-2:123456789012:exampletopic

answered Jul 30, 2018 by Priyaj
• 57,550 points
Hi. Unfortunately the events tracked via CloudTrail API calls (from looking at the CloudTrail logs) relate to assessment runs starts events themselves (StartAssessmentRun) rather than the messages that the assessment runs send out (ASSESSMENT_RUN_STARTED, ASSESSMENT_RUN_COMPLETED, FINDING_REPORTED etc.).

Related Questions In AWS

0 votes
1 answer

How do I add python libraries to an AWS lambda function for Alexa?

As it is described in the Amazon ...READ MORE

answered Oct 23, 2018 in AWS by Archana
• 4,150 points
+3 votes
1 answer

aws cloudformation for atomic stack-update

When you perform a stack update, only ...READ MORE

answered Mar 27, 2018 in AWS by DareDev
• 6,850 points
0 votes
1 answer
0 votes
1 answer
0 votes
2 answers