AWS systems-manager documentation change
Summary
Added recommendation to test approval policies in non-production environments
Security assessment
Emphasizes security best practices for policy testing but doesn't address a specific existing vulnerability. Improves security documentation quality.
Diff
diff --git a/systems-manager/latest/userguide/systems-manager-just-in-time-node-access-create-approval-policies-q-ide-cli.md b/systems-manager/latest/userguide/systems-manager-just-in-time-node-access-create-approval-policies-q-ide-cli.md index fe974e61b..bddd3b873 100644 --- a//systems-manager/latest/userguide/systems-manager-just-in-time-node-access-create-approval-policies-q-ide-cli.md +++ b//systems-manager/latest/userguide/systems-manager-just-in-time-node-access-create-approval-policies-q-ide-cli.md @@ -92 +92 @@ Amazon Q Developer uses generative AI. You may need to verify responses. See the - 6. From your terminal, run the following AWS CLI command to create an SSM document using your policy content. We recommend testing approval policies with a subset of identities and nodes in an AWS account and AWS Region. + 6. From your terminal, run the following AWS CLI command to create an SSM document using your policy content. Before using approval policies in a production environment, test your approval policies with a subset of identities and nodes in an AWS account and AWS Region.