AWS Security ChangesHomeSearch

AWS iot-mi documentation change

Service: iot-mi · 2025-07-18 · Documentation medium

File: iot-mi/latest/devguide/concepts-account-linking.md

Summary

Added recommendation for protecting sensitive tokens using CloudWatch Logs data protection

Security assessment

Documents best practices for handling sensitive authentication tokens, improving security guidance but not addressing a specific vulnerability.

Diff

diff --git a/iot-mi/latest/devguide/concepts-account-linking.md b/iot-mi/latest/devguide/concepts-account-linking.md
index 4184b30f3..1a215db28 100644
--- a//iot-mi/latest/devguide/concepts-account-linking.md
+++ b//iot-mi/latest/devguide/concepts-account-linking.md
@@ -18,0 +19,2 @@ Account linking is a process that allows managed integrations and the connector
+We recommend that you don't log these sensitive tokens in any logs. If however they are stored in logs, we recommend that you use CloudWatch Logs data protection policies to mask the tokens in the logs. For more information, see [Help protect sensitive log data with masking](https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/mask-sensitive-log-data.html).
+