AWS neptune-analytics documentation change
Summary
Removed example policy JSON for confused deputy prevention
Security assessment
Removal of example policy does not fix a vulnerability but removes documentation of security best practices. No direct evidence of security issue resolution.
Diff
diff --git a/neptune-analytics/latest/userguide/cross-service-confused-deputy-prevention.md b/neptune-analytics/latest/userguide/cross-service-confused-deputy-prevention.md index 9e3b5ecbc..d2c854142 100644 --- a//neptune-analytics/latest/userguide/cross-service-confused-deputy-prevention.md +++ b//neptune-analytics/latest/userguide/cross-service-confused-deputy-prevention.md @@ -19,32 +18,0 @@ The following example shows how you can use the `aws:SourceArn` and `aws:SourceA -JSON - - -**** - - - - { - "Version": "2012-10-17", - "Statement": { - "Sid": "ConfusedDeputyPreventionExamplePolicy", - "Effect": "Allow", - "Principal": { - "Service": "Amazon Neptune Analytics.amazonaws.com" - }, - "Action": "Amazon Neptune Analytics:ActionName", - "Resource": [ - "arn:aws:Amazon Neptune Analytics:::ResourceName/*" - ], - "Condition": { - "ArnLike": { - "aws:SourceArn": "arn:aws:Amazon Neptune Analytics:*:123456789012:*" - }, - "StringEquals": { - "aws:SourceAccount": "123456789012" - } - } - } - } - - -