AWS codeguru documentation change
Summary
Fixed action syntax formatting, updated region/account IDs in examples, and added JSON sections
Security assessment
Syntax corrections (e.g., adding missing quote) and example updates improve policy accuracy but don't address security vulnerabilities
Diff
diff --git a/codeguru/latest/profiler-ug/auth-and-access-control-iam-identity-based-access-control.md b/codeguru/latest/profiler-ug/auth-and-access-control-iam-identity-based-access-control.md index 6bcc373ba..302359bb0 100644 --- a//codeguru/latest/profiler-ug/auth-and-access-control-iam-identity-based-access-control.md +++ b//codeguru/latest/profiler-ug/auth-and-access-control-iam-identity-based-access-control.md @@ -157,0 +158,6 @@ The `AmazonCodeGuruProfilerFullAccess` policy contains the following statement. +JSON + + +**** + + @@ -180,0 +188,6 @@ The `AmazonCodeGuruProfilerReadOnlyAccess` policy contains the following stateme +JSON + + +**** + + @@ -205,0 +220,6 @@ The `AmazonCodeGuruProfilerAgentAccess` policy contains the following statement. +JSON + + +**** + + @@ -214 +234 @@ The `AmazonCodeGuruProfilerAgentAccess` policy contains the following statement. - "codeguru-profiler:PostAgentProfile", + "codeguru-profiler:PostAgentProfile" @@ -271,0 +293,6 @@ The following permissions policy uses a wildcard character (`"codeguru-profiler: +JSON + + +**** + + @@ -282 +309 @@ The following permissions policy uses a wildcard character (`"codeguru-profiler: - "aws:RequestedRegion": "us-east-2" + "aws:RequestedRegion": "us-east-1" @@ -292,0 +321,6 @@ You can create a policy that allows users to view a CodeGuru Profiler profiling +JSON + + +**** + + @@ -305 +339 @@ You can create a policy that allows users to view a CodeGuru Profiler profiling - "Resource": "arn:aws:codeguru-profiler:us-east-2:544120495673:profilingGroup/DemoProfilingGroup", + "Resource": "arn:aws:codeguru-profiler:us-east-1:123456789012:profilingGroup/DemoProfilingGroup",