AWS awsaccountbilling documentation change
Summary
Added new invoicing-related permissions (Create/Get/Put/Update/List/DeleteProcurementPortalPreference) to Billing and AWSBillingReadOnlyAccess managed policies
Security assessment
The changes add new permissions related to procurement portal management but do not indicate any security vulnerability being addressed. This appears to be a routine expansion of policy capabilities for new invoicing features rather than a response to a security issue. While permissions are security-related in general, there is no evidence this change fixes an exploit or vulnerability.
Diff
diff --git a/awsaccountbilling/latest/aboutv2/managed-policies.md b/awsaccountbilling/latest/aboutv2/managed-policies.md index 1c0a714c2..753a49348 100644 --- a//awsaccountbilling/latest/aboutv2/managed-policies.md +++ b//awsaccountbilling/latest/aboutv2/managed-policies.md @@ -104,0 +105,15 @@ Change | Description | Date +Billing and AWSBillingReadOnlyAccess – Update to existing policies | We added the following invoicing permissions to `Billing`: + + * `invoicing:CreateProcurementPortalPreference` + * `invoicing:GetProcurementPortalPreference` + * `invoicing:PutProcurementPortalPreference` + * `invoicing:UpdateProcurementPortalPreferenceStatus` + * `invoicing:ListProcurementPortalPreferences` + * `invoicing:DeleteProcurementPortalPreference` + +We added the following invoicing permissions to `AWSBillingReadOnlyAccess`: + + * `invoicing:GetProcurementPortalPreference` + * `invoicing:ListProcurementPortalPreferences` + +| November 19, 2025