AWS Security ChangesHomeSearch

AWS AmazonCloudWatch documentation change

Service: AmazonCloudWatch · 2025-06-22 · Documentation low

File: AmazonCloudWatch/latest/monitoring/DocumentHistory.md

Summary

Added entry about updated AmazonCloudWatchRUMReadOnlyAccess policy with new permissions for Synthetics, CloudWatch, Logs, X-Ray, and RUM

Security assessment

Documents expanded IAM permissions for read-only access but does not indicate remediation of a security vulnerability. Enhances security documentation by clarifying access controls.

Diff

diff --git a/AmazonCloudWatch/latest/monitoring/DocumentHistory.md b/AmazonCloudWatch/latest/monitoring/DocumentHistory.md
index 3e13db37f..38b9d6158 100644
--- a//AmazonCloudWatch/latest/monitoring/DocumentHistory.md
+++ b//AmazonCloudWatch/latest/monitoring/DocumentHistory.md
@@ -10,0 +11 @@ Change| Description| Date
+[AmazonCloudWatchRUMReadOnlyAccess updated](https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/auth-and-access-control-cw.html#managed-policies-cloudwatch-RUM)| The `synthetics: describeCanaries`, `synthetics:describeCanariesLastRun`, `cloudwatch:GetMetricData`, `cloudwatch:DescribeAlarms`, `logs:DescribeLogGroups`, `xray:GetTraceSummaries`, and `rum:ListTagsForResources` permissions was added to the CloudWatch RUM `AmazonCloudWatchRUMReadOnlyAccess` policy.| June 12, 2025