AWS Security ChangesHomeSearch

AWS prescriptive-guidance medium security documentation change

Service: prescriptive-guidance · 2025-06-28 · Security-related medium

File: prescriptive-guidance/latest/patterns/automatically-remediate-unencrypted-amazon-rds-db-instances-and-clusters.md

Summary

Fixed KMS key policy ARN syntax by correcting quote character

Security assessment

Corrected invalid quote character in KMS policy ARN that could have prevented proper encryption remediation. A malformed ARN might leave RDS instances unencrypted due to policy enforcement failure.

Diff

diff --git a/prescriptive-guidance/latest/patterns/automatically-remediate-unencrypted-amazon-rds-db-instances-and-clusters.md b/prescriptive-guidance/latest/patterns/automatically-remediate-unencrypted-amazon-rds-db-instances-and-clusters.md
index 1f76168ea..dda5378b7 100644
--- a//prescriptive-guidance/latest/patterns/automatically-remediate-unencrypted-amazon-rds-db-instances-and-clusters.md
+++ b//prescriptive-guidance/latest/patterns/automatically-remediate-unencrypted-amazon-rds-db-instances-and-clusters.md
@@ -9 +9 @@ SummaryPrerequisites and limitationsArchitectureToolsBest practicesEpicsRelated
- _Created by Ajay Rawat (AWS) and Josh Joy (AWS)_
+ _Ajay Rawat and Josh Joy, Amazon Web Services_
@@ -154 +154 @@ Update your KMS key policy.|
-            "AWS": "arn:aws:iam:: <your-AWS-account-ID>”:role/<your-IAM-remediation-role>"
+            "AWS": "arn:aws:iam:: <your-AWS-account-ID>":role/<your-IAM-remediation-role>"