AWS glue medium security documentation change
Summary
Removed 'glue:GetTables' and 'glue:DeleteTable' permissions from target IAM role requirements
Security assessment
Reducing IAM permissions follows least privilege principles by removing unnecessary data catalog access. This directly hardens security by limiting potential privilege escalation vectors for the target role.
Diff
diff --git a/glue/latest/dg/zero-etl-prerequisites.md b/glue/latest/dg/zero-etl-prerequisites.md index c31e795e8..26cada517 100644 --- a//glue/latest/dg/zero-etl-prerequisites.md +++ b//glue/latest/dg/zero-etl-prerequisites.md @@ -234,2 +233,0 @@ Create a target IAM role with the following permissions and trust relationships: - "glue:GetTables", - "glue:DeleteTable",