AWS codepipeline documentation change
Summary
Updated IAM policy examples with specific account ID (111122223333) and added JSON formatting sections.
Security assessment
Improves security documentation clarity for CodeDeploy permissions with explicit account IDs. No indication of security vulnerability being fixed.
Diff
diff --git a/codepipeline/latest/userguide/action-reference-ECSbluegreen.md b/codepipeline/latest/userguide/action-reference-ECSbluegreen.md index f52a88ece..daa7e7a16 100644 --- a//codepipeline/latest/userguide/action-reference-ECSbluegreen.md +++ b//codepipeline/latest/userguide/action-reference-ECSbluegreen.md @@ -146,0 +147,6 @@ For the `CodeDeployToECS` action (blue/green deployments), the following are the +JSON + + +**** + + @@ -158 +164 @@ For the `CodeDeployToECS` action (blue/green deployments), the following are the - "arn:aws:codedeploy:*:{{customerAccountId}}:deploymentgroup:[[ApplicationName]]/*" + "arn:aws:codedeploy:*:111122223333:deploymentgroup:[[ApplicationName]]/*" @@ -170,2 +176,2 @@ For the `CodeDeployToECS` action (blue/green deployments), the following are the - "arn:aws:codedeploy:*:{{customerAccountId}}:application:[[ApplicationName]]", - "arn:aws:codedeploy:*:{{customerAccountId}}:application:[[ApplicationName]]/*" + "arn:aws:codedeploy:*:111122223333:application:[[ApplicationName]]", + "arn:aws:codedeploy:*:111122223333:application:[[ApplicationName]]/*" @@ -181 +187 @@ For the `CodeDeployToECS` action (blue/green deployments), the following are the - "arn:aws:codedeploy:*:{{customerAccountId}}:deploymentconfig:*" + "arn:aws:codedeploy:*:111122223333:deploymentconfig:*" @@ -200 +206 @@ For the `CodeDeployToECS` action (blue/green deployments), the following are the - "arn:aws:iam::{{customerAccountId}}:role/[[PassRoles]]" + "arn:aws:iam::111122223333:role/[[PassRoles]]"