Identify any instances or ECS tasks at risk of data exposure.
Ensure all EC2 and ECS services does not allow excessive S3 or DynamoDB access through a missing required VPC Endpoint or misconfigured VPC endpoint policy.
Supported Issue Types:
An EC2 or ECS service found with excessive S3 or DynamoDB access via a misconfigured VPC endpoint policy or missing required VPC Endpoint.
- Restrict the access of S3 or DynamoDB
- Removed exposed data
- Create compliant VPC Endpoint