AWS bedrock documentation change
Summary
Updated CloudWatch API documentation links and vended logs permissions reference
Security assessment
While log delivery relates to security monitoring, the changes only correct URL formatting without introducing new security documentation or addressing specific vulnerabilities. The IAM permission mentioned was already documented.
Diff
diff --git a/bedrock/latest/userguide/agents-memory-log-delivery-enable.md b/bedrock/latest/userguide/agents-memory-log-delivery-enable.md index ed9f506e4..0c1fbb63c 100644 --- a//bedrock/latest/userguide/agents-memory-log-delivery-enable.md +++ b//bedrock/latest/userguide/agents-memory-log-delivery-enable.md @@ -7 +7 @@ -To enable logging for your Amazon Bedrock agent alias, use the [PutDeliverySource](https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDeliverySource.html) CloudWatch API. Make sure to specify the following: +To enable logging for your Amazon Bedrock agent alias, use the [PutDeliverySource](https://docs.aws.amazon.com//AmazonCloudWatchLogs/latest/APIReference/API_PutDeliverySource.html) CloudWatch API. Make sure to specify the following: @@ -18 +18 @@ You will also need the add `bedrock:AllowVendedLogDeliveryForResource` permissio -To view an example IAM role/permissions policy with all the required permissions for your specific logging destination, see [Vended logs permissions for different delivery destinations](https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/AWS-logs-and-resource-policy.html#AWS-vended-logs-permissions-V2). Use the example to provide details for your logging destination, including allowing updates to your specific logging destination resource (CloudWatch Logs, Amazon S3, or Amazon Data Firehose). +To view an example IAM role/permissions policy with all the required permissions for your specific logging destination, see [Vended logs permissions for different delivery destinations](https://docs.aws.amazon.com//AmazonCloudWatch/latest/logs/AWS-logs-and-resource-policy.html#AWS-vended-logs-permissions-V2). Use the example to provide details for your logging destination, including allowing updates to your specific logging destination resource (CloudWatch Logs, Amazon S3, or Amazon Data Firehose).