AWS codepipeline documentation change
Summary
Updated IAM policy examples with specific account ID (111122223333) and added JSON formatting sections.
Security assessment
Improves security documentation clarity by showing proper IAM policy structure with explicit account IDs, reducing risk of misconfiguration. No specific vulnerability addressed.
Diff
diff --git a/codepipeline/latest/userguide/action-reference-AppConfig.md b/codepipeline/latest/userguide/action-reference-AppConfig.md index 2bc7ed937..6c8412f57 100644 --- a//codepipeline/latest/userguide/action-reference-AppConfig.md +++ b//codepipeline/latest/userguide/action-reference-AppConfig.md @@ -79,0 +80,6 @@ When CodePipeline runs the action, the CodePipeline service role policy requires +JSON + + +**** + + @@ -91,3 +97,3 @@ When CodePipeline runs the action, the CodePipeline service role policy requires - "arn:aws:appconfig:*:{{customerAccountId}}:application/[[Application]]", - "arn:aws:appconfig:*:{{customerAccountId}}:application/[[Application]]/*", - "arn:aws:appconfig:*:{{customerAccountId}}:deploymentstrategy/*" + "arn:aws:appconfig:*:111122223333:application/[[Application]]", + "arn:aws:appconfig:*:111122223333:application/[[Application]]/*", + "arn:aws:appconfig:*:111122223333:deploymentstrategy/*"