[Launch Announcement] AWS Artifact introduces programmatic access to compliance reports via AWS SDK

We are excited to announce the availability of the new Artifact APIs through the AWS SDK, which provides easier programmatic access to compliance reports. This functionality complements the existing workflow of accessing compliance reports through the AWS Artifact console.

AWS customers can now integrate AWS Artifact into their workflows to automate the retrieval of compliance information. For example, customer systems can use the APIs to fetch the latest compliance reports in response to new report notifications triggered by Amazon EventBridge. This allows customers to better maintain a continuously updated compliance posture for their AWS workloads.

To access the new APIs, customers can configure fine-grained access control with IAM permissions. To simplify this process, we have introduced a new managed policy, AWSArtifactReportsReadOnlyAccess, to provide read-only access to Artifact reports. Customers can also utilize the artifact:ReportSeries and artifact:ReportCategory IAM context keys to define access based on the report grouping designation. Furthermore, the calls from AWS Artifact API are logged with AWS CloudTrail as events, providing customers with improved visibility and audit trails.

The Artifact APIs through AWS SDK are generally available for all commercial regions. The AWS Artifact service itself is offered through the us-east-1 region (US East - N. Virginia).