AWS amazonq documentation change
Summary
Removed JSON policy example for S3 bucket permissions related to user activity reports.
Security assessment
Policy example removal does not indicate a security issue but may reduce documentation clarity. No evidence of addressing a vulnerability.
Diff
diff --git a/amazonq/latest/qdeveloper-ug/q-admin-user-telemetry.md b/amazonq/latest/qdeveloper-ug/q-admin-user-telemetry.md index 4090c3642..62463e6aa 100644 --- a//amazonq/latest/qdeveloper-ug/q-admin-user-telemetry.md +++ b//amazonq/latest/qdeveloper-ug/q-admin-user-telemetry.md @@ -44,34 +43,0 @@ Create an Amazon S3 bucket to hold the user activity report CSV file. The bucket -JSON - - -**** - - - { - "Version": "2012-10-17", - "Statement": [ - { - "Sid": "QDeveloperLogsWrite", - "Effect": "Allow", - "Principal": { - "Service": "q.amazonaws.com" - }, - "Action": [ - "s3:PutObject" - ], - "Resource": [ - "arn:aws:s3:::bucketName/prefix/*" - ], - "Condition": { - "StringEquals": { - "aws:SourceAccount": "accountId" - }, - "ArnLike": { - "aws:SourceArn": "arn:aws:codewhisperer:us-east-1:accountId:*" - } - } - } - ] - } - -