AWS Security ChangesHomeSearch

AWS singlesignon low security documentation change

Service: singlesignon · 2025-08-13 · Security-related low

File: singlesignon/latest/userguide/slrconcept.md

Summary

Updated grammar from 'you're' to 'you are' in a sentence explaining privilege escalation prevention when using the AWS Organizations management account role.

Security assessment

The change clarifies a security control (preventing privilege escalation) by emphasizing that the management account uses the signed-in role instead of the service-linked role. This directly addresses security posture and access control.

Diff

diff --git a/singlesignon/latest/userguide/slrconcept.md b/singlesignon/latest/userguide/slrconcept.md
index 6540a7f44..68f807138 100644
--- a//singlesignon/latest/userguide/slrconcept.md
+++ b//singlesignon/latest/userguide/slrconcept.md
@@ -15 +15 @@ Service-linked roles that are created in each AWS account are named `AWSServiceR
-  * If you're signed in to the AWS Organizations management account, it uses your currently signed-in role and not the service-linked role. This prevents the escalation of privileges.
+  * If you are signed in to the AWS Organizations management account, it uses your currently signed-in role and not the service-linked role. This prevents the escalation of privileges.