AWS Security ChangesHomeSearch

AWS workmail documentation change

Service: workmail · 2025-08-28 · Documentation low

File: workmail/latest/adminguide/audit-logging.md

Summary

Removed Firehose IAM policy JSON example for audit logging

Security assessment

Removal of a policy example might indicate deprecated practices, but there's no explicit evidence of security issues being addressed. This appears to be documentation cleanup.

Diff

diff --git a/workmail/latest/adminguide/audit-logging.md b/workmail/latest/adminguide/audit-logging.md
index 912eeaecb..a10ace490 100644
--- a//workmail/latest/adminguide/audit-logging.md
+++ b//workmail/latest/adminguide/audit-logging.md
@@ -462,28 +461,0 @@ Because Firehose doesn't use resource policies, AWS uses IAM roles when setting
-JSON
-    
-
-****
-    
-    
-    
-    {
-        "Version": "2012-10-17",
-        "Statement": [
-            {
-                "Action": [
-                    "firehose:PutRecord",
-                    "firehose:PutRecordBatch",
-                    "firehose:ListTagsForDeliveryStream"
-                ],
-                "Resource": "arn:aws:firehose:aws-region:111122223333:deliverystream/workmail-*",
-                "Condition": {
-                    "StringEquals": {
-                        "aws:ResourceTag/LogDeliveryEnabled": "true"
-                    }
-                },
-                "Effect": "Allow"
-            }
-        ]
-    }
-    
-