AWS servicecatalog documentation change
Summary
Expanded permissions in service-linked role policy documentation to include ListRegions action
Security assessment
The change adds ListRegions to the list of allowed actions for a service-linked role but does not indicate a security fix or vulnerability mitigation. This appears to be a routine policy update for functionality.
Diff
diff --git a/servicecatalog/latest/adminguide/using-service-linked-roles.md b/servicecatalog/latest/adminguide/using-service-linked-roles.md index e512ee28c..66d0e65f3 100644 --- a//servicecatalog/latest/adminguide/using-service-linked-roles.md +++ b//servicecatalog/latest/adminguide/using-service-linked-roles.md @@ -81,3 +81 @@ The role permissions policy named **AWSServiceCatalogOrgsDataSyncServiceRolePoli - * Action: `DescribeAccount`, `DescribeOrganization`, and `ListAWSServiceAccessForOrganization` on `Organizations accounts` - - * Action: `ListAccounts`, `ListChildren`, and `ListParent` on `Organizations accounts` + * Action: `DescribeAccount`, `DescribeOrganization`, `ListAccounts`, `ListAWSServiceAccessForOrganization`, `ListChildren`, `ListParent`, and `ListRegions` on `Organizations accounts`