AWS codebuild documentation change
Summary
Removed a sentence explaining that requests must be signed using access keys or temporary security credentials from AWS STS
Security assessment
The removed content was general security practice documentation about request signing. No evidence of a vulnerability being addressed. This appears to be a documentation simplification rather than a security fix.
Diff
diff --git a/codebuild/latest/userguide/infrastructure-security.md b/codebuild/latest/userguide/infrastructure-security.md index 4f421d3bc..283b2e584 100644 --- a//codebuild/latest/userguide/infrastructure-security.md +++ b//codebuild/latest/userguide/infrastructure-security.md @@ -18,2 +17,0 @@ You use AWS published API calls to access CodeBuild through the network. Clients -Additionally, requests must be signed by using an access key ID and a secret access key that is associated with an IAM principal. Or you can use the [AWS Security Token Service](https://docs.aws.amazon.com/STS/latest/APIReference/welcome.html) (AWS STS) to generate temporary security credentials to sign requests. -