AWS AmazonRDS documentation change
Summary
Added note restricting cron job visibility to users with rds_superuser privileges
Security assessment
Documents access control improvements for cron job visibility but does not indicate a prior security vulnerability.
Diff
diff --git a/AmazonRDS/latest/AuroraUserGuide/PostgreSQL_pg_cron.md b/AmazonRDS/latest/AuroraUserGuide/PostgreSQL_pg_cron.md index c71cd2ba4..d0ef5dafb 100644 --- a//AmazonRDS/latest/AuroraUserGuide/PostgreSQL_pg_cron.md +++ b//AmazonRDS/latest/AuroraUserGuide/PostgreSQL_pg_cron.md @@ -147,0 +148,4 @@ The metadata for `pg_cron` is all held in the PostgreSQL default database named +###### Note + +Only users with `rds_superuser` role or `rds_superuser` privileges can list all cron jobs in the database. Other users can view only their own jobs in the `cron.job` table. +