AWS Security ChangesHomeSearch

AWS codeguru high security documentation change

Service: codeguru · 2025-10-22 · Security-related high

File: codeguru/latest/security-ug/infrastructure-security.md

Summary

Removed line about API request signing requirements with IAM/AWS STS

Security assessment

Omission of API request signing instructions in security documentation removes foundational authentication guidance. This creates risk of unauthorized access if implementers skip credential requirements.

Diff

diff --git a/codeguru/latest/security-ug/infrastructure-security.md b/codeguru/latest/security-ug/infrastructure-security.md
index 47d8fc878..8631d8983 100644
--- a//codeguru/latest/security-ug/infrastructure-security.md
+++ b//codeguru/latest/security-ug/infrastructure-security.md
@@ -20,2 +19,0 @@ You use AWS published API calls to access CodeGuru Security through the network.
-Additionally, requests must be signed by using an access key ID and a secret access key that is associated with an IAM principal. Or you can use the [AWS Security Token Service](https://docs.aws.amazon.com/STS/latest/APIReference/welcome.html) (AWS STS) to generate temporary security credentials to sign requests.
-