AWS kendra documentation change
Summary
Removed JSON example of S3 bucket policy enforcing VPC endpoint restrictions
Security assessment
While the removed policy demonstrated security best practices (VPC endpoint restrictions), its removal does not directly indicate a security issue. This appears to be documentation restructuring rather than addressing a specific vulnerability.
Diff
diff --git a/kendra/latest/dg/s3-vpc-example-1.md b/kendra/latest/dg/s3-vpc-example-1.md index 4db0062b8..e51b09f29 100644 --- a//kendra/latest/dg/s3-vpc-example-1.md +++ b//kendra/latest/dg/s3-vpc-example-1.md @@ -126,24 +125,0 @@ The following is an example bucket policy. Replace ``bucket-name`` and ``vpce-id -JSON - - -**** - - - { - "Version": "2012-10-17", - "Statement": [ - { - "Effect": "Deny", - "Principal": "*", - "Action": "s3:*", - "Resource": "arn:aws:s3:::bucket-name/*", - "Condition": { - "StringNotEquals": { - "aws:SourceVpce": "vpce-id" - } - } - } - ] - } - -