AWS Security ChangesHomeSearch

AWS glue high security documentation change

Service: glue · 2025-08-13 · Security-related high

File: glue/latest/webapi/API_StartJobRun.md

Summary

Added 'ExecutionRoleSessionPolicy' parameter documentation mirroring the JobRun API changes

Security assessment

Same security implications as the JobRun.md changes - enables runtime permission restrictions for job execution roles.

Diff

diff --git a/glue/latest/webapi/API_StartJobRun.md b/glue/latest/webapi/API_StartJobRun.md
index 8e30f96d5..c7a2cf3e6 100644
--- a//glue/latest/webapi/API_StartJobRun.md
+++ b//glue/latest/webapi/API_StartJobRun.md
@@ -19,0 +20 @@ Starts a job run using a job definition.
+       "ExecutionRoleSessionPolicy": "string",
@@ -85,0 +87,11 @@ Required: No
+**ExecutionRoleSessionPolicy **
+    
+
+This inline session policy to the StartJobRun API allows you to dynamically restrict the permissions of the specified execution role for the scope of the job, without requiring the creation of additional IAM roles.
+
+Type: String
+
+Length Constraints: Minimum length of 2. Maximum length of 2048.
+
+Required: No
+