AWS launchwizard documentation change
Summary
Updated reference from 'AWS CloudFormation stacks' to 'CloudFormation stacks' in IAM policy documentation
Security assessment
The change is a terminology update without altering the policy's security permissions or addressing security flaws. The policy scope remains unchanged.
Diff
diff --git a/launchwizard/latest/userguide/security-iam-awsmanpol.md b/launchwizard/latest/userguide/security-iam-awsmanpol.md index e1fc60f66..d02ffd730 100644 --- a//launchwizard/latest/userguide/security-iam-awsmanpol.md +++ b//launchwizard/latest/userguide/security-iam-awsmanpol.md @@ -50 +50 @@ This policy includes the following permissions. - * `ec2` – Allows creation of all security groups, authorization of ingress rules for all security groups, all get or describe operations, and creation of all VPCs, NAT/internet gateways, subnets, routes/route tables, and key pairs. Allows instances from the AWS CloudFormation stacks in Launch Wizard deployments to be stopped or terminated. Allows anything called from the Launch Wizard endpoint to perform other Amazon EC2 actions. This is required so that all EC2-related resources deployed from the Launch Wizard CloudFormation stacks can be appropriately created and managed. + * `ec2` – Allows creation of all security groups, authorization of ingress rules for all security groups, all get or describe operations, and creation of all VPCs, NAT/internet gateways, subnets, routes/route tables, and key pairs. Allows instances from the CloudFormation stacks in Launch Wizard deployments to be stopped or terminated. Allows anything called from the Launch Wizard endpoint to perform other Amazon EC2 actions. This is required so that all EC2-related resources deployed from the Launch Wizard CloudFormation stacks can be appropriately created and managed.