AWS Security ChangesHomeSearch

AWS managedservices medium security documentation change

Service: managedservices · 2025-05-22 · Security-related medium

File: managedservices/latest/ctref/management-advanced-security-group-delete.md

Summary

Clarified that the operation fails entirely if security groups have dependencies (previously, only dependent groups were skipped).

Security assessment

Ensuring the operation fails when dependencies exist prevents partial deletions that could leave resources unprotected, addressing a potential security risk from misconfiguration.

Diff

diff --git a/managedservices/latest/ctref/management-advanced-security-group-delete.md b/managedservices/latest/ctref/management-advanced-security-group-delete.md
index 257cfa6c8..375bc5fb1 100644
--- a//managedservices/latest/ctref/management-advanced-security-group-delete.md
+++ b//managedservices/latest/ctref/management-advanced-security-group-delete.md
@@ -9 +9 @@ Change Type DetailsAdditional InformationExecution Input ParametersExample: Requ
-Delete up to 20 security groups. Note: Only security groups with no dependencies are deleted and security groups with dependencies are not deleted. This change type does not require a review and can be used instead of the manual, review required, change type (ct-3cp96z7r065e4).
+Delete up to 20 security groups. Note: Only security groups with no dependencies are deleted. If one or more security groups have dependencies, the operation fails. This change type does not require a review and can be used instead of the manual, review required, change type (ct-3cp96z7r065e4).
@@ -29 +29 @@ Screenshot of this change type in the AMS console:
-![Delete Security Groups change type details, including ID, execution mode, and description.](/images/managedservices/latest/ctref/images/guiSecGroupDeleteNrrCT.png)
+![](/images/managedservices/latest/ctref/images/guiSecGroupDeleteCT.png)