AWS amazonq high security documentation change
Summary
Updated command syntax from 'trustall' to 'trust-all' and removed an image reference
Security assessment
The change updates references to a security-sensitive command ('trust-all') that bypasses tool confirmation. The documentation links to security risks and maintains warnings about its usage, directly relating to access control and privilege management.
Diff
diff --git a/amazonq/latest/qdeveloper-ug/command-line-chat-tools.md b/amazonq/latest/qdeveloper-ug/command-line-chat-tools.md index e0ab7175d..c0f345ee1 100644 --- a//amazonq/latest/qdeveloper-ug/command-line-chat-tools.md +++ b//amazonq/latest/qdeveloper-ug/command-line-chat-tools.md @@ -14 +14 @@ Tools commands Command | Description -`trustall` | Trusts all tools (equivalent to deprecated /acceptall). +`trust-all` | Trusts all tools (equivalent to deprecated /acceptall). @@ -42 +42 @@ To trust or untrust a specific tool for the current session: -You can also trust all tools at once with `/tools trustall`(equivalent to the deprecated `/acceptall` command): +You can also trust all tools at once with `/tools trust-all`(equivalent to the deprecated `/acceptall` command): @@ -45 +45 @@ You can also trust all tools at once with `/tools trustall`(equivalent to the de - Amazon Q> /tools trustall + Amazon Q> /tools trust-all @@ -49,3 +49 @@ You can also trust all tools at once with `/tools trustall`(equivalent to the de -Using `/tools trustall` carries risks. For more information, see [Understanding security risks](./command-line-chat-security.html#command-line-chat-security-risks) . - - +Using `/tools trust-all` carries risks. For more information, see [Understanding security risks](./command-line-chat-security.html#command-line-chat-security-risks) .