AWS Security ChangesHomeSearch

AWS systems-manager documentation change

Service: systems-manager · 2025-05-10 · Documentation medium

File: systems-manager/latest/userguide/systems-manager-just-in-time-node-access-create-approval-policies-q-ide-cli.md

Summary

Added recommendation to test approval policies in non-production environments

Security assessment

Emphasizes security best practices for policy testing but doesn't address a specific existing vulnerability. Improves security documentation quality.

Diff

diff --git a/systems-manager/latest/userguide/systems-manager-just-in-time-node-access-create-approval-policies-q-ide-cli.md b/systems-manager/latest/userguide/systems-manager-just-in-time-node-access-create-approval-policies-q-ide-cli.md
index fe974e61b..bddd3b873 100644
--- a//systems-manager/latest/userguide/systems-manager-just-in-time-node-access-create-approval-policies-q-ide-cli.md
+++ b//systems-manager/latest/userguide/systems-manager-just-in-time-node-access-create-approval-policies-q-ide-cli.md
@@ -92 +92 @@ Amazon Q Developer uses generative AI. You may need to verify responses. See the
-  6. From your terminal, run the following AWS CLI command to create an SSM document using your policy content. We recommend testing approval policies with a subset of identities and nodes in an AWS account and AWS Region.
+  6. From your terminal, run the following AWS CLI command to create an SSM document using your policy content. Before using approval policies in a production environment, test your approval policies with a subset of identities and nodes in an AWS account and AWS Region.