AWS AmazonCloudWatch documentation change
Summary
Removed reference to example policies in permission verification step
Security assessment
Similar to the Firehose version, this maintains security documentation about required permissions but does not indicate a security fix. The removal of examples might reduce clarity but doesn't introduce vulnerabilities.
Diff
diff --git a/AmazonCloudWatch/latest/logs/Subscription-Filter-CrossAccount-Permissions.md b/AmazonCloudWatch/latest/logs/Subscription-Filter-CrossAccount-Permissions.md index 476f6840e..2ea23e44c 100644 --- a//AmazonCloudWatch/latest/logs/Subscription-Filter-CrossAccount-Permissions.md +++ b//AmazonCloudWatch/latest/logs/Subscription-Filter-CrossAccount-Permissions.md @@ -29 +29 @@ Make note of the value represented by `RoleName` or `UserName`. - 3. Verify that the policies attached to this role or user provide explicit permissions to call `logs:PutSubscriptionFilter` on the cross-account destination resource. The following example policies show the recommended permissions. + 3. Verify that the policies attached to this role or user provide explicit permissions to call `logs:PutSubscriptionFilter` on the cross-account destination resource.