API Gateway Endpoint is Public

Overview

Checks if API Gateway endpoint configuration is private or not. API Gateway endpoints should only be accessible over the Internet if required. API endpoints are a common attack vector and, generally, should not be open for unrestricted public access.

Vendor

AWS

Cloud Service

API Gateway

Severity

Item Types

AWS::ApiGateway::RestApi

Overview​

Vendor​

Cloud Service​

Severity​

Item Types​

Overview

Vendor

Cloud Service

Severity

Item Types