Thank you for contacting AWS Re:post. I understand that you are setting up events in EventBridge and observing the following behavior: When you delete objects in bulk(i.e using console or Cloudformation), that event is logged as one delete event and not separated for every object.
We were able to confirm the above behavior and it is expected in Cloutrail logs. As mentioned in the following document, difference in Cloudtrail and Server access logs, we see that Logging of keys in a batch delete operation is not logged in Cloudtrail. However it is logged in Server Access logs.
In this case, you can use Server Access logs to get detailed logs for every delete event.
Please do not hesitate to reach out to me if you have any other questions, comments or concerns.
Should I create IAM role to allow AWS service send events to my default busasked 2 years ago
Allowing permission to Generate a policy based on CloudTrail events where the selected Trail logs events in an S3 bucket in another accountAccepted Answerasked 2 months ago
Are EventBridge events (fully) passed to Glue Workflows?asked 8 months ago
CDK EventBridge CfnRule does not put events to a CloudWatch Log Groupasked a month ago
Does the new feature of CloudFormation events to EventBridge include events from StackSets?Accepted Answerasked 2 months ago
EventBridge max EventBuses on event pathAccepted Answerasked 4 months ago
CDK: put aws apigateway events on to default bus in EventBridgeasked 7 months ago
Missing EventBridge events from s3asked 6 months ago
enable Amazon EventBridge for s3 bucket via CDKAccepted Answerasked 5 months ago
Consolidating Cloudtrail events from multiple accounts to one bucketasked 4 months ago