AWS amazonq medium security documentation change
Summary
Added guidance about required IAM permissions despite reported errors for codeconnections:ListOwners and codeconnections:ListRepositories
Security assessment
Addresses potential misconfiguration of IAM policies that could block customization features. Explicitly documenting required permissions despite tooling errors helps prevent insecure configurations.
Diff
diff --git a/amazonq/latest/qdeveloper-ug/id-based-policy-examples-admins.md b/amazonq/latest/qdeveloper-ug/id-based-policy-examples-admins.md index 057d567dc..1dc0cad85 100644 --- a//amazonq/latest/qdeveloper-ug/id-based-policy-examples-admins.md +++ b//amazonq/latest/qdeveloper-ug/id-based-policy-examples-admins.md @@ -469,0 +470,4 @@ To configure customizations in the Amazon Q Developer Pro console, your Amazon Q +In the following policy, the IAM service will report errors on the `codeconnections:ListOwners` and `codeconnections:ListRepositories` permissions. Create the policy with these permissions anyway. The permissions are required, and the policy will work despite the errors. + +###### Note +