AWS Security ChangesHomeSearch

AWS guardduty documentation change

Service: guardduty · 2025-07-18 · Documentation medium

File: guardduty/latest/ug/doc-history.md

Summary

Added documentation about expected bucket owner verification for trusted IP/threat lists

Security assessment

Documents new security feature for verifying S3 bucket ownership in threat list configurations, improving access control but not addressing a specific vulnerability

Diff

diff --git a/guardduty/latest/ug/doc-history.md b/guardduty/latest/ug/doc-history.md
index a508df765..68ad7229d 100644
--- a//guardduty/latest/ug/doc-history.md
+++ b//guardduty/latest/ug/doc-history.md
@@ -12,0 +13 @@ Change| Description| Date
+Updated functionality - Added expected bucket owner in trust IP and threat lists| GuardDuty added the **Expected bucket owner** field for trusted IP and threat IP lists. In this optional field, you can specify an AWS account ID that GuardDuty will use to verify Amazon S3 bucket ownership. For more information, see [Working with trusted IP lists and threat lists](https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_upload-lists.html).| July 16, 2025