AWS Security ChangesHomeSearch

AWS amazonq documentation change

Service: amazonq · 2025-05-25 · Documentation low

File: amazonq/latest/qbusiness-ug/Asana-iam-role.md

Summary

Expanded IAM resource ARNs in policy example

Security assessment

The change broadens the resource scope in IAM policies but does not address a specific security vulnerability. Improves documentation completeness for proper access control configuration.

Diff

diff --git a/amazonq/latest/qbusiness-ug/Asana-iam-role.md b/amazonq/latest/qbusiness-ug/Asana-iam-role.md
index 50e1c8826..5053b2a27 100644
--- a//amazonq/latest/qbusiness-ug/Asana-iam-role.md
+++ b//amazonq/latest/qbusiness-ug/Asana-iam-role.md
@@ -64 +64,4 @@ To connect your data source connector to Amazon Q, you must give Amazon Q an IAM
-          "Resource": "arn:aws:qbusiness:{{region}}:{{source_account}}:application/{{application_id}}/index/{{index_id}}"
+          "Resource": [
+          "arn:aws:qbusiness:{{region}}:{{source_account}}:application/{{application_id}}",
+          "arn:aws:qbusiness:{{region}}:{{source_account}}:application/{{application_id}}/index/{{index_id}}"
+          ]