AWS artifact documentation change
Summary
Removed 'AcceptAgreement' and 'TerminateAgreement' permissions from example IAM policies, reducing granted privileges
Security assessment
Change demonstrates principle of least privilege by reducing unnecessary permissions in example policies, but no evidence of addressing a specific disclosed vulnerability
Diff
diff --git a/artifact/latest/ug/example-iam-policies.md b/artifact/latest/ug/example-iam-policies.md index 4360ae5aa..1c177d820 100644 --- a//artifact/latest/ug/example-iam-policies.md +++ b//artifact/latest/ug/example-iam-policies.md @@ -498,2 +498 @@ The following policy grants permissions to view organizational agreements. - "artifact:GetNdaForAgreement", - "artifact:AcceptAgreement" + "artifact:GetNdaForAgreement" @@ -507,2 +506 @@ The following policy grants permissions to view organizational agreements. - "artifact:GetCustomerAgreement", - "artifact:TerminateAgreement" + "artifact:GetCustomerAgreement"