AWS guardduty documentation change
Summary
Removed '(recommended)' label from AmazonGuardDutyFullAccess_v2 policy reference
Security assessment
Change removes a recommendation qualifier but does not alter security permissions or address vulnerabilities. This appears to be a documentation style update rather than a security-related modification.
Diff
diff --git a/guardduty/latest/ug/guardduty-lists-prerequisites.md b/guardduty/latest/ug/guardduty-lists-prerequisites.md index dfa9dee8b..33c48233a 100644 --- a//guardduty/latest/ug/guardduty-lists-prerequisites.md +++ b//guardduty/latest/ug/guardduty-lists-prerequisites.md @@ -35 +35 @@ If you don't already have the `s3:GetObject` permission for the S3 bucket locati -Various IAM identities require special permissions to work with trusted IP lists and threat lists in GuardDuty. An identity with the attached [AmazonGuardDutyFullAccess_v2 (recommended)](./security-iam-awsmanpol.html#security-iam-awsmanpol-AmazonGuardDutyFullAccess-v2) managed policy can only rename and deactivate uploaded trusted IP lists and threat lists. +Various IAM identities require special permissions to work with trusted IP lists and threat lists in GuardDuty. An identity with the attached [AmazonGuardDutyFullAccess_v2 ](./security-iam-awsmanpol.html#security-iam-awsmanpol-AmazonGuardDutyFullAccess-v2) managed policy can only rename and deactivate uploaded trusted IP lists and threat lists.