Developer Tools
Snyk Learn
Snyk Advisor
Code Checker
About Snyk
Find out if you have vulnerabilities that put you at risk
Test your applications
Toggle filtering controls
All service groups
Expand this section
AWS
All AWS service groups
Account Management
ACM
Amplify
API Gateway (REST APIs)
AppStream
AppSync
Athena
Batch
CloudFront
CloudTrail
CloudWatch
CodeBuild
Cognito
Config
DocumentDB
DynamoDB
EBS
EC2
ECR
ECS
EFS
EKS
ELB
EMR
ElastiCache
ElasticSearch
FSx
Glacier
Global Accelerator
Glue
IAM
Kinesis
KMS
Lambda
MQ
MSK
Neptune
QLDB
RDS
Redshift
S3
Sagemaker
Secrets Manager
SNS
SQS
SSM
Transfer
VPC
WAF
WorkSpaces
Expand this section
Azure
Expand this section
Google
Expand this section
Kubernetes
Report a new vulnerability
RULE
SERVICE GROUP
M
API Gateway caching is not enabled for REST APIs
API Gateway (REST APIs)
M
API Gateway classic custom domain does not use secure TLS protocol version (1.2 and above)
API Gateway (REST APIs)
M
API Gateway classic is not using authentication mechanisms
API Gateway (REST APIs)
M
API Gateway methods metrics are not enabled
API Gateway (REST APIs)
M
API Gateway Missing Rate Limiting and Throttling Controls
API Gateway (REST APIs)
M
API Gateway should require API key for access
API Gateway (REST APIs)
M
API Gateway X-Ray tracing is disabled
API Gateway (REST APIs)
M
AppStream is not configured with VPC
AppStream
M
AppSync cache data is not encrypted at rest
AppSync
M
AppSync cache data is not encrypted in transit
AppSync
M
AppSync GraphQL API Caching is not restricted
AppSync
M
Athena workgroup result encryption is not enforced
Athena
M
Athena workgroup settings can be overridden by client
Athena
M
Auto Scaling group does not span two or more Availability Zones
EC2
M
AWS ACM certificates are using wildcards
ACM
M
AWS AppSync GraphQL logging is not enabled
AppSync
M
AWS default network ACL allows public access
VPC
M
AWS ECR replication configuration for private registry is not configured
ECR
M
AWS Glue Metadata is not encrypted at rest
Glue
M
AWS IAM access key hasn't been used for at least 90 days
IAM
M
AWS IAM user password hasn't been used for at least 90 days
IAM
M
AWS Lambda function-level ReservedConcurrentExecutions limit is not set
Lambda
M
AWS network ACL allows public access
VPC
M
AWS network ACL rule allows public access
VPC
M
AWS security group rule allows public access
VPC
M
AWS WorkSpaces access is not restricted to trusted IP addresses
WorkSpaces
M
Batch job runs with privileged flag set to true
Batch
M
Broad IAM permissions in IAM policy
IAM
M
CloudFront access logging is disabled
CloudFront
M
CloudFront distribution custom origin does not use secure TLS protocol version (1.2 and above)
CloudFront
Previous
Next