AWS cloudshell documentation change
Summary
Removed details about request signing requirements using access keys/secret keys or AWS STS temporary credentials
Security assessment
The removed content explained standard authentication mechanisms rather than addressing a specific vulnerability. While authentication is security-related, the deletion appears to be documentation simplification rather than response to a security incident. However, removing this information could reduce clarity about security requirements for users.
Diff
diff --git a/cloudshell/latest/userguide/infrastructure-security.md b/cloudshell/latest/userguide/infrastructure-security.md index f2b6cd1e5..cbed511a0 100644 --- a//cloudshell/latest/userguide/infrastructure-security.md +++ b//cloudshell/latest/userguide/infrastructure-security.md @@ -18,2 +17,0 @@ You use AWS published API calls to access AWS CloudShell through the network. Cl -Additionally, requests must be signed by using an access key ID and a secret access key that is associated with an IAM principal. Or you can use the [AWS Security Token Service](https://docs.aws.amazon.com/STS/latest/APIReference/welcome.html) (AWS STS) to generate temporary security credentials to sign requests. -