AWS prescriptive-guidance documentation change
Summary
Minor text edits: Removed redundant 'AWS' before 'Region' and added 'AWS' qualifier to Security Hub reference for clarity.
Security assessment
Changes are editorial improvements for consistency and clarity. No direct security vulnerability addressed. The mention of Security Hub actions relates to existing security documentation but does not introduce new security content.
Diff
diff --git a/prescriptive-guidance/latest/patterns/provision-least-privilege-iam-roles-by-deploying-a-role-vending-machine-solution.md b/prescriptive-guidance/latest/patterns/provision-least-privilege-iam-roles-by-deploying-a-role-vending-machine-solution.md index 5332e3188..2d3b05a95 100644 --- a//prescriptive-guidance/latest/patterns/provision-least-privilege-iam-roles-by-deploying-a-role-vending-machine-solution.md +++ b//prescriptive-guidance/latest/patterns/provision-least-privilege-iam-roles-by-deploying-a-role-vending-machine-solution.md @@ -173 +173 @@ Update default values from the sample repo.| To configure the RVM to operate in - 2. Update the `.github/workflows/.env` file with the AWS account ID, AWS Region, and any other variables that you want to specify. + 2. Update the `.github/workflows/.env` file with the AWS account ID, Region, and any other variables that you want to specify. @@ -202 +202 @@ I created a role by using the RVM, but GitHub isn’t able to assume it.| Verify -My read-only role is failing to run its pipeline because it lacks permissions to read a specific resource.| Although the `ReadOnlyAccess` policy provides broad read-only permissions, the policy doesn't have some read actions (for example, certain Security Hub actions).You can add specific action permissions by using the `inline_policy_readonly` parameter of the `github-workflow-roles` module. +My read-only role is failing to run its pipeline because it lacks permissions to read a specific resource.| Although the `ReadOnlyAccess` policy provides broad read-only permissions, the policy doesn't have some read actions (for example, certain AWS Security Hub actions).You can add specific action permissions by using the `inline_policy_readonly` parameter of the `github-workflow-roles` module.