AWS kms documentation change
Summary
Added JSON section markers and formatting elements between policy examples. Fixed a key ARN syntax error (removed trailing single quote).
Security assessment
The changes primarily add formatting elements (JSON markers and section breaks) to improve documentation structure. The ARN correction fixes a syntax error but there's no evidence this was an exploitable security issue. No new security guidance or vulnerability mitigation is introduced.
Diff
diff --git a/kms/latest/developerguide/customer-managed-policies.md b/kms/latest/developerguide/customer-managed-policies.md index 6ebce3274..4198d45a3 100644 --- a//kms/latest/developerguide/customer-managed-policies.md +++ b//kms/latest/developerguide/customer-managed-policies.md @@ -43,0 +44,6 @@ This policy includes of two policy statements. The `Resource` element in the fir +JSON + + +**** + + @@ -81,0 +89,6 @@ To restrict the user to particular types of KMS keys, use the [kms:KeySpec](./co +JSON + + +**** + + @@ -106,0 +121,6 @@ This IAM policy does not include `kms:PutKeyPolicy` permission or any other perm +JSON + + +**** + + @@ -139,0 +161,6 @@ The following IAM policy allows a user to encrypt and decrypt data with any KMS +JSON + + +**** + + @@ -156,0 +185,6 @@ The following IAM policy allows a user to encrypt and decrypt data with any KMS +JSON + + +**** + + @@ -175,0 +211,6 @@ The following IAM policy allows a user to encrypt and decrypt data with the two +JSON + + +**** + + @@ -187 +228 @@ The following IAM policy allows a user to encrypt and decrypt data with the two - "arn:aws:kms:us-west-2:111122223333:key/0987dcba-09fe-87dc-65ba-ab0987654321" + "arn:aws:kms:us-west-2:111122223333:key/01234abc-d12a-b34c-d56e-f1234567890a'" @@ -195,0 +238,6 @@ The following IAM policy prevents a user from disabling or deleting any KMS keys +JSON + + +**** + +