AWS AmazonECS documentation change
Summary
Removed example IAM policy granting Lambda:InvokeFunction permission for lifecycle hooks
Security assessment
Deletes a permissions example without indicating a security flaw. While related to access control, there's no evidence this change fixes an existing vulnerability or weakness.
Diff
diff --git a/AmazonECS/latest/developerguide/blue-green-permissions.md b/AmazonECS/latest/developerguide/blue-green-permissions.md index 74ea412e9..60242926d 100644 --- a//AmazonECS/latest/developerguide/blue-green-permissions.md +++ b//AmazonECS/latest/developerguide/blue-green-permissions.md @@ -16,23 +15,0 @@ The following additional permissions are required: -The following policy contains the required permissions for Lambda lifecycle hooks: - -JSON - - -**** - - - - { - "Version":"2012-10-17", - "Statement": [ - { - "Effect": "Allow", - "Action": [ - "lambda:InvokeFunction" - ], - "Resource": "arn:aws:lambda:*:*:function:*" - } - ] - } - -