AWS Security ChangesHomeSearch

AWS bedrock documentation change

Service: bedrock · 2025-05-13 · Documentation low

File: bedrock/latest/userguide/security-iam-awsmanpol.md

Summary

Updated IAM policies with new SageMaker permissions and corrected documentation dates

Security assessment

Added sagemaker:DescribeInferenceComponent and sagemaker:ListEndpoints permissions appear to be routine policy updates for functionality expansion rather than addressing specific security issues

Diff

diff --git a/bedrock/latest/userguide/security-iam-awsmanpol.md b/bedrock/latest/userguide/security-iam-awsmanpol.md
index 28ca95800..cfaeb3fdd 100644
--- a//bedrock/latest/userguide/security-iam-awsmanpol.md
+++ b//bedrock/latest/userguide/security-iam-awsmanpol.md
@@ -164,0 +165,2 @@ This policy includes the following permissions:
+    				"sagemaker:DescribeInferenceComponent",
+    				"sagemaker:ListEndpoints",
@@ -318,0 +321 @@ Change | Description | Date
+AmazonBedrockFullAccess – Updated policy |  Amazon Bedrock updated the AmazonBedrockFullAccess managed policy to include permissions for `sagemaker:DescribeInferenceComponent` and `sagemaker:ListEndpoints`. | May 12th, 2025  
@@ -320 +323 @@ AmazonBedrockFullAccess – Updated policy |  Amazon Bedrock updated the AmazonB
-AmazonBedrockReadOnly – Updated policy |  Amazon Bedrock updated th AmazonBedrockReadOnly managed policy to grant customers the necessary permissions to read Amazon Bedrock Marketplace resources. This includes permissions to manage the underlying Amazon SageMaker AI resources, as they serve as the foundation for the Amazon Bedrock Marketplace functionality. | Dember 4th, 2024  
+AmazonBedrockReadOnly – Updated policy |  Amazon Bedrock updated the AmazonBedrockReadOnly managed policy to grant customers the necessary permissions to read Amazon Bedrock Marketplace resources. This includes permissions to manage the underlying Amazon SageMaker AI resources, as they serve as the foundation for the Amazon Bedrock Marketplace functionality. | December 4th, 2024