AWS bedrock documentation change
Summary
Removed section about permissions for Automated Reasoning policies with ApplyGuardrail
Security assessment
Removal of permissions documentation for a deprecated or relocated feature. No evidence of addressing a security vulnerability.
Diff
diff --git a/bedrock/latest/userguide/guardrail-profiles-permissions.md b/bedrock/latest/userguide/guardrail-profiles-permissions.md index 8a8c720aa..4c9e72041 100644 --- a//bedrock/latest/userguide/guardrail-profiles-permissions.md +++ b//bedrock/latest/userguide/guardrail-profiles-permissions.md @@ -5 +5 @@ -Permissions to create and manage guardrails for cross-Region inferencePermissions for invoking guardrails with cross-Region inferencePermissions for Automated Reasoning policies with ApplyGuardrail +Permissions to create and manage guardrails for cross-Region inferencePermissions for invoking guardrails with cross-Region inference @@ -69,18 +68,0 @@ This example policy specifies the following resources: -## Permissions for Automated Reasoning policies with ApplyGuardrail - -When using Automated Reasoning policies with the ApplyGuardrail API, you need an IAM policy that allows you to invoke the automated reasoning policy. This permission enables you to call ApplyGuardrail with automated reasoning checks. - - - { - "Sid": "AutomatedReasoningChecks", - "Effect": "Allow", - "Action": [ - "bedrock:InvokeAutomatedReasoningPolicy" - ], - "Resource": [ - "arn:aws:bedrock:us-east-1:account-id:automated-reasoning-policy/policy-id:policy-version" - ] - } - -This policy allows you to invoke automated reasoning policies to validate content against your defined business rules and policies when using the ApplyGuardrail API. -