Describe the feature
This does not appear to be supported right now.
This does not currently seem to be supported by cloudformation but the same custom resource workaround used for log retention policy could unblock cdk support.
Use Case
This lack of functionality is particularly frustrating because security hub notifies about this issue but then customers have no way to easily comply in an automated fashion using cdk/cfn (the best practice tools for deploying infra).
https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-standards-fsbp-controls.html#fsbp-sns-2
Proposed Solution
Best option: Get cloudformation support and natively support setting this property on the topic
Second best option: Support this via a custom resource built into the cdk
Other Information
No response
Acknowledgements
CDK version used
any
Environment details (OS name and version, etc.)
any
Describe the feature
This does not appear to be supported right now.
This does not currently seem to be supported by cloudformation but the same custom resource workaround used for log retention policy could unblock cdk support.
Use Case
This lack of functionality is particularly frustrating because security hub notifies about this issue but then customers have no way to easily comply in an automated fashion using cdk/cfn (the best practice tools for deploying infra).
https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-standards-fsbp-controls.html#fsbp-sns-2
Proposed Solution
Best option: Get cloudformation support and natively support setting this property on the topic
Second best option: Support this via a custom resource built into the cdk
Other Information
No response
Acknowledgements
CDK version used
any
Environment details (OS name and version, etc.)
any