AWS detective documentation change
Summary
Fixed URL formatting by adding an extra slash in the AmazonDetectiveFullAccess policy link
Security assessment
The change corrects a URL path but does not alter security guidance or address vulnerabilities. The security implications of the documented permissions remain unchanged.
Diff
diff --git a/detective/latest/userguide/security-best-practices.md b/detective/latest/userguide/security-best-practices.md index def9781a4..9da274120 100644 --- a//detective/latest/userguide/security-best-practices.md +++ b//detective/latest/userguide/security-best-practices.md @@ -17 +17 @@ When inviting member accounts to your Detective behavior graph, only invite acco -Limit access to the behavior graph. Users with the [AmazonDetectiveFullAccess](https://docs.aws.amazon.com/detective/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-amazondetectivefullaccess) policy can grant access to all Detective actions. Principals with these permissions can manage member accounts, add tags to their behavior graph, and use Detective for investigation. When a user has access to a behavior graph, they can see all of the findings for the member accounts. Such findings might expose sensitive security information. +Limit access to the behavior graph. Users with the [AmazonDetectiveFullAccess](https://docs.aws.amazon.com//detective/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-amazondetectivefullaccess) policy can grant access to all Detective actions. Principals with these permissions can manage member accounts, add tags to their behavior graph, and use Detective for investigation. When a user has access to a behavior graph, they can see all of the findings for the member accounts. Such findings might expose sensitive security information.