AWS amazonq documentation change
Summary
Added 'q:UpdateConversation' and 'q:DeleteConversation' permissions to AmazonQDeveloperAccess and AmazonQFullAccess policies, and updated change log entries to reflect new conversation history management capabilities.
Security assessment
The added permissions enhance access control for conversation history management, which is a security-related feature. However, there is no explicit evidence of addressing a specific security vulnerability or incident.
Diff
diff --git a/amazonq/latest/qdeveloper-ug/managed-policy.md b/amazonq/latest/qdeveloper-ug/managed-policy.md index 81d471352..354bd2629 100644 --- a//amazonq/latest/qdeveloper-ug/managed-policy.md +++ b//amazonq/latest/qdeveloper-ug/managed-policy.md @@ -70 +70,3 @@ To enable full access to complete administrative tasks in the Amazon Q subscript - "q:UpdatePlugin" + "q:UpdatePlugin", + "q:UpdateConversation", + "q:DeleteConversation" @@ -133 +135,3 @@ To use some features of Amazon Q, you might need additional permissions. See the - "q:UsePlugin" + "q:UsePlugin", + "q:UpdateConversation", + "q:DeleteConversation" @@ -303,0 +308,2 @@ Change | Description | Date +AmazonQDeveloperAccess \- Updated policy | Additional permissions have been added to manage conversation history in Amazon Q chat. | May 14, 2025 +AmazonQFullAccess \- Updated policy | Additional permissions have been added to manage conversation history in Amazon Q chat. | May 14, 2025 @@ -306 +312 @@ AmazonQFullAccess \- Updated policy | Additional permissions have been added to -GitLabDuoWithAmazonQPermissionsPolicy \- Updated policy | Additional permission has been added to allow udpates to a third-party OAuth application with Amazon Q Developer. | April 30, 2025 +GitLabDuoWithAmazonQPermissionsPolicy \- Updated policy | Additional permission has been added to allow updates to a third-party OAuth application with Amazon Q Developer. | April 30, 2025