AWS amazonq documentation change
Summary
Hardcoded Secrets Manager and KMS ARN regions to 'us-east-1'
Security assessment
Regional specificity improves documentation accuracy but does not address a security vulnerability or introduce security features.
Diff
diff --git a/amazonq/latest/qdeveloper-ug/wiz-plugin.md b/amazonq/latest/qdeveloper-ug/wiz-plugin.md index b9bab4117..54e77f122 100644 --- a//amazonq/latest/qdeveloper-ug/wiz-plugin.md +++ b//amazonq/latest/qdeveloper-ug/wiz-plugin.md @@ -85 +85 @@ JSON - "arn:aws:secretsmanager:{{your-region}}:{{your-account-id}}:secret:[[secret-id]]" + "arn:aws:secretsmanager:us-east-1:{{your-account-id}}:secret:[[secret-id]]" @@ -111 +111 @@ JSON - "Resource": "arn:aws:secretsmanager:{{region}}:{{accountId}}:secret:{{secretId}}" + "Resource": "arn:aws:secretsmanager:us-east-1:{{accountId}}:secret:{{secretId}}" @@ -118 +118 @@ JSON - "Resource": "arn:aws:kms:{{region}}:{{accountId}}:key/{{keyId}}", + "Resource": "arn:aws:kms:us-east-1:{{accountId}}:key/{{keyId}}", @@ -121 +121 @@ JSON - "kms:ViaService": "secretsmanager.{{region}}.amazonaws.com" + "kms:ViaService": "secretsmanager.us-east-1.amazonaws.com"