AWS Security ChangesHomeSearch

AWS bedrock documentation change

Service: bedrock · 2025-11-22 · Documentation low

File: bedrock/latest/userguide/s3-bucket-access.md

Summary

Fixed double slashes in URLs for IAM permissions and condition key documentation links.

Security assessment

The updates correct URL formatting but do not alter the security practices (e.g., S3 bucket access policies, service roles) described in the documentation.

Diff

diff --git a/bedrock/latest/userguide/s3-bucket-access.md b/bedrock/latest/userguide/s3-bucket-access.md
index 14c3201c9..fb96fcff1 100644
--- a//bedrock/latest/userguide/s3-bucket-access.md
+++ b//bedrock/latest/userguide/s3-bucket-access.md
@@ -19 +19 @@ The identities or resources to which you need to attach the above permissions de
-  * Multiple features in Amazon Bedrock use [service roles](./security-iam-sr.html). If a feature uses a service role, you must configure the permissions such that the service role, rather than the user's IAM identity, has access to the S3 data. Some Amazon Bedrock features can automatically create a service role for you and attach the required [identity-based permissions](https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies.html#policies_id-based) to the service role, if you use the AWS Management Console.
+  * Multiple features in Amazon Bedrock use [service roles](./security-iam-sr.html). If a feature uses a service role, you must configure the permissions such that the service role, rather than the user's IAM identity, has access to the S3 data. Some Amazon Bedrock features can automatically create a service role for you and attach the required [identity-based permissions](https://docs.aws.amazon.com//IAM/latest/UserGuide/access_policies.html#policies_id-based) to the service role, if you use the AWS Management Console.
@@ -77 +77 @@ This topic provides a template for a policy to attach to an IAM identity. The po
-  2. (If you need to write data to an S3 location) Permissions to write data to an S3 bucket. This statement also includes a condition using the `aws:ResourceAccount` [condition key](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_condition-keys.html#condition-keys-resourceaccount) to restrict access to requests sent from a specific AWS account.
+  2. (If you need to write data to an S3 location) Permissions to write data to an S3 bucket. This statement also includes a condition using the `aws:ResourceAccount` [condition key](https://docs.aws.amazon.com//IAM/latest/UserGuide/reference_policies_condition-keys.html#condition-keys-resourceaccount) to restrict access to requests sent from a specific AWS account.