AWS prometheus documentation change
Summary
Removed sentence about access key signing requirements and AWS STS temporary credentials from API access section.
Security assessment
Identical change to PrivateCA file - removal of standard authentication description without security context. No evidence of vulnerability remediation.
Diff
diff --git a/prometheus/latest/userguide/infrastructure-security.md b/prometheus/latest/userguide/infrastructure-security.md index 4632f8613..f343ba024 100644 --- a//prometheus/latest/userguide/infrastructure-security.md +++ b//prometheus/latest/userguide/infrastructure-security.md @@ -18,2 +17,0 @@ You use AWS published API calls to access Amazon Managed Service for Prometheus -Additionally, requests must be signed by using an access key ID and a secret access key that is associated with an IAM principal. Or you can use the [AWS Security Token Service](https://docs.aws.amazon.com/STS/latest/APIReference/welcome.html) (AWS STS) to generate temporary security credentials to sign requests. -