AWS Security ChangesHomeSearch

AWS aurora-dsql documentation change

Service: aurora-dsql · 2025-05-10 · Documentation low

File: aurora-dsql/latest/userguide/security-iam-awsmanpol.md

Summary

Updated managed policy documentation with ServiceLinkedRolePolicy metrics capability

Security assessment

Policy update adds CloudWatch metrics publishing permissions for monitoring purposes, but doesn't introduce new security controls or address vulnerabilities

Diff

diff --git a/aurora-dsql/latest/userguide/security-iam-awsmanpol.md b/aurora-dsql/latest/userguide/security-iam-awsmanpol.md
index 0e1342f15..9940b5ead 100644
--- a//aurora-dsql/latest/userguide/security-iam-awsmanpol.md
+++ b//aurora-dsql/latest/userguide/security-iam-awsmanpol.md
@@ -94 +94,2 @@ Change | Description | Date
-Page created | Started tracking managed policies for AWS managed policies related to Amazon Aurora DSQL | December 3, 2024  
+AuroraDsqlServiceLinkedRolePolicy update | Adds the ability to publish metrics to the `AWS/AuroraDSQL` and `AWS/Usage CloudWatch` namespaces to the policy. This allows the associated service or role to emit more comprehensive usage and performance data to your CloudWatch environment. For more information, see [AuroraDsqlServiceLinkedRolePolicy](https://docs.aws.amazon.com/aws-managed-policy/latest/reference/AuroraDsqlServiceLinkedRolePolicy.html) and [Using service-linked roles in Aurora DSQL](https://docs.aws.amazon.com/aurora-dsql/latest/userguide/working-with-service-linked-roles.html). | May 8, 2025  
+Page created | Started tracking AWS managed policies related to Amazon Aurora DSQL | December 3, 2024