AWS amazonq documentation change
Summary
Expanded IAM resource ARN to include both application and index resources
Security assessment
Change modifies IAM policy syntax but doesn't introduce or document security features. The adjustment appears to be about proper policy structure rather than addressing a specific security vulnerability.
Diff
diff --git a/amazonq/latest/qbusiness-ug/slack-iam-role.md b/amazonq/latest/qbusiness-ug/slack-iam-role.md index 30979d02d..fc107553c 100644 --- a//amazonq/latest/qbusiness-ug/slack-iam-role.md +++ b//amazonq/latest/qbusiness-ug/slack-iam-role.md @@ -64 +64,4 @@ To connect your data source connector to Amazon Q, you must give Amazon Q an IAM - "Resource": "arn:aws:qbusiness:{{region}}:{{source_account}}:application/{{application_id}}/index/{{index_id}}" + "Resource": [ + "arn:aws:qbusiness:{{region}}:{{source_account}}:application/{{application_id}}", + "arn:aws:qbusiness:{{region}}:{{source_account}}:application/{{application_id}}/index/{{index_id}}" + ]