AWS bedrock documentation change
Summary
Updated IAM policies with new SageMaker permissions and corrected documentation dates
Security assessment
Added sagemaker:DescribeInferenceComponent and sagemaker:ListEndpoints permissions appear to be routine policy updates for functionality expansion rather than addressing specific security issues
Diff
diff --git a/bedrock/latest/userguide/security-iam-awsmanpol.md b/bedrock/latest/userguide/security-iam-awsmanpol.md index 28ca95800..cfaeb3fdd 100644 --- a//bedrock/latest/userguide/security-iam-awsmanpol.md +++ b//bedrock/latest/userguide/security-iam-awsmanpol.md @@ -164,0 +165,2 @@ This policy includes the following permissions: + "sagemaker:DescribeInferenceComponent", + "sagemaker:ListEndpoints", @@ -318,0 +321 @@ Change | Description | Date +AmazonBedrockFullAccess – Updated policy | Amazon Bedrock updated the AmazonBedrockFullAccess managed policy to include permissions for `sagemaker:DescribeInferenceComponent` and `sagemaker:ListEndpoints`. | May 12th, 2025 @@ -320 +323 @@ AmazonBedrockFullAccess – Updated policy | Amazon Bedrock updated the AmazonB -AmazonBedrockReadOnly – Updated policy | Amazon Bedrock updated th AmazonBedrockReadOnly managed policy to grant customers the necessary permissions to read Amazon Bedrock Marketplace resources. This includes permissions to manage the underlying Amazon SageMaker AI resources, as they serve as the foundation for the Amazon Bedrock Marketplace functionality. | Dember 4th, 2024 +AmazonBedrockReadOnly – Updated policy | Amazon Bedrock updated the AmazonBedrockReadOnly managed policy to grant customers the necessary permissions to read Amazon Bedrock Marketplace resources. This includes permissions to manage the underlying Amazon SageMaker AI resources, as they serve as the foundation for the Amazon Bedrock Marketplace functionality. | December 4th, 2024