AWS AmazonCloudWatch documentation change
Summary
Added structured KMS policy statement with specific key ARN
Security assessment
Enhances KMS policy example with proper JSON structure and concrete resource ARN, improving security documentation quality
Diff
diff --git a/AmazonCloudWatch/latest/monitoring/CloudWatch_Synthetics_artifact_encryption.md b/AmazonCloudWatch/latest/monitoring/CloudWatch_Synthetics_artifact_encryption.md index fe71a2c2b..bedce6a1e 100644 --- a//AmazonCloudWatch/latest/monitoring/CloudWatch_Synthetics_artifact_encryption.md +++ b//AmazonCloudWatch/latest/monitoring/CloudWatch_Synthetics_artifact_encryption.md @@ -38 +38,4 @@ JSON - "Statement": {"Effect": "Allow", + "Statement": [ + { + "Sid": "AllowKMSKeyUsage", + "Effect": "Allow", @@ -43 +46 @@ JSON - "Resource": "Your KMS key ARN" + "Resource": "arn:aws:kms:us-east-1:123456789012:key/1234abcd-12ab-34cd-56ef-1234567890ab" @@ -44,0 +48 @@ JSON + ]