AWS Security ChangesHomeSearch

AWS transfer documentation change

Service: transfer · 2025-08-22 · Documentation low

File: transfer/latest/userguide/security_iam_service-with-iam.md

Summary

Added reference to VPC endpoint-specific IAM policy documentation

Security assessment

The change adds a link to documentation about limiting VPC endpoint access, which is a security best practice. However, there's no evidence this addresses a specific security vulnerability rather than improving general documentation.

Diff

diff --git a/transfer/latest/userguide/security_iam_service-with-iam.md b/transfer/latest/userguide/security_iam_service-with-iam.md
index 8d244cfed..17897adf2 100644
--- a//transfer/latest/userguide/security_iam_service-with-iam.md
+++ b//transfer/latest/userguide/security_iam_service-with-iam.md
@@ -111 +111 @@ AWS Transfer Family defines its own set of condition keys and also supports usin
-To view examples of AWS Transfer Family identity-based policies, see [AWS Transfer Family identity-based policy examples](./security_iam_id-based-policy-examples.html).
+To view examples of AWS Transfer Family identity-based policies, see [AWS Transfer Family identity-based policy examples](./security_iam_id-based-policy-examples.html). For VPC endpoint-specific IAM policies, see [Limiting VPC endpoint access for Transfer Family servers](./create-server-in-vpc.html#limit-vpc-endpoint-access).