AWS Security ChangesHomeSearch

AWS awscloudtrail documentation change

Service: awscloudtrail · 2025-10-19 · Documentation medium

File: awscloudtrail/latest/userguide/cloudtrail-concepts.md

Summary

Added entries for logging Amazon Bedrock Tool, ECS container instance, Amazon QuickSuite Actions, and AWS IoT Secure Tunneling API activities

Security assessment

The additions document new CloudTrail logging capabilities for these services, enhancing auditability. While this improves security visibility, there is no evidence of addressing a specific security vulnerability.

Diff

diff --git a/awscloudtrail/latest/userguide/cloudtrail-concepts.md b/awscloudtrail/latest/userguide/cloudtrail-concepts.md
index c72946fd1..acc4a2d31 100644
--- a//awscloudtrail/latest/userguide/cloudtrail-concepts.md
+++ b//awscloudtrail/latest/userguide/cloudtrail-concepts.md
@@ -154,0 +155 @@ Amazon Bedrock | Amazon Bedrock Code-Interpreter-Custom API activity. | **Bedroc
+Amazon Bedrock | Amazon Bedrock Tool API activity. | **Bedrock Tool** | `AWS::Bedrock::Tool`  
@@ -180,0 +182 @@ Amazon Elastic Compute Cloud | Amazon EC2 instance connect endpoint API activity
+Amazon Elastic Container Service | Amazon Elastic Container Service API activity on a container instance. | **ECS container instance** | `AWS::ECS::ContainerInstance`  
@@ -243,0 +246 @@ Amazon Q Developer | [Amazon Q Developer API activity](https://docs.aws.amazon.c
+Amazon Quick Suite | Amazon Quick Suite API activity on an action connector. | **AWS QuickSuite Actions** | `AWS::Quicksight::ActionConnector`  
@@ -348,0 +352,2 @@ You can log network activity events for the following services:
+  * AWS IoT Secure Tunneling
+