AWS AmazonCloudWatch documentation change
Summary
Removed reference to example policies in permission verification step
Security assessment
The change removes an example policy reference but maintains focus on verifying explicit permissions. While related to security documentation, there is no evidence of addressing a specific vulnerability.
Diff
diff --git a/AmazonCloudWatch/latest/logs/Subscription-Filter-CrossAccount-Permissions-Firehose.md b/AmazonCloudWatch/latest/logs/Subscription-Filter-CrossAccount-Permissions-Firehose.md index 673b07cd4..f6c634f01 100644 --- a//AmazonCloudWatch/latest/logs/Subscription-Filter-CrossAccount-Permissions-Firehose.md +++ b//AmazonCloudWatch/latest/logs/Subscription-Filter-CrossAccount-Permissions-Firehose.md @@ -29 +29 @@ Make note of the value represented by `RoleName` or `UserName`. - 3. Verify that the policies attached to this role or user provide explicit permissions to call `logs:PutSubscriptionFilter` on the cross-account destination resource. The following example policies show the recommended permissions. + 3. Verify that the policies attached to this role or user provide explicit permissions to call `logs:PutSubscriptionFilter` on the cross-account destination resource.