AWS AmazonECS documentation change
Summary
Removed details about request signing using access keys and AWS STS
Security assessment
The removed line explained authentication methods for API requests. While this information is security-related, its removal does not indicate a resolved security issue but rather a documentation simplification, potentially reducing clarity on secure API practices.
Diff
diff --git a/AmazonECS/latest/developerguide/infrastructure-security.md b/AmazonECS/latest/developerguide/infrastructure-security.md index bce60002c..cbb6574a4 100644 --- a//AmazonECS/latest/developerguide/infrastructure-security.md +++ b//AmazonECS/latest/developerguide/infrastructure-security.md @@ -18,2 +17,0 @@ You use AWS published API calls to access Amazon ECS through the network. Client -Additionally, requests must be signed by using an access key ID and a secret access key that is associated with an IAM principal. Or you can use the [AWS Security Token Service](https://docs.aws.amazon.com/STS/latest/APIReference/welcome.html) (AWS STS) to generate temporary security credentials to sign requests. -