AWS textract documentation change
Summary
Removed IAM policy example allowing iam:PassRole on a specific KMS key
Security assessment
The example's removal doesn't directly address a known security issue. While iam:PassRole is a sensitive permission, there's no evidence that the removed example was insecure or part of a security fix.
Diff
diff --git a/textract/latest/dg/api-async-roles.md b/textract/latest/dg/api-async-roles.md index f2565c722..df5a12fba 100644 --- a//textract/latest/dg/api-async-roles.md +++ b//textract/latest/dg/api-async-roles.md @@ -67,20 +66,0 @@ JSON -JSON - - -**** - - - { - "Version": "2012-10-17", - "Statement": [ - { - "Sid": "MySid", - "Effect": "Allow", - "Action": "iam:PassRole", - "Resource": "arn:${Partition}:kms:${Region}:${Account}:key/${KeyId}" - } - ] - } - - -