AWS cli documentation change
Summary
Added note that GetDataAccess actions are logged in CloudTrail when requesting temporary data location credentials
Security assessment
This change adds documentation about CloudTrail logging for GetDataAccess operations, which enhances security monitoring and audit capabilities. This is a security documentation improvement but does not address a specific security vulnerability or incident.
Diff
diff --git a/cli/latest/reference/lakeformation/get-temporary-data-location-credentials.md b/cli/latest/reference/lakeformation/get-temporary-data-location-credentials.md index 0e8c1b50d..440de8863 100644 --- a//cli/latest/reference/lakeformation/get-temporary-data-location-credentials.md +++ b//cli/latest/reference/lakeformation/get-temporary-data-location-credentials.md @@ -15 +15 @@ - * [AWS CLI 2.34.19 Command Reference](../../index.html) » + * [AWS CLI 2.34.20 Command Reference](../../index.html) » @@ -60,0 +61,2 @@ Allows a user or application in a secure environment to access data in a specifi +> `GetDataAccess` is logged in CloudTrail whenever a principal requests temporary data location credentials to access data in a data lake location that is registered with Lake Formation. + @@ -341 +343 @@ CredentialsScope -> (string) - * [AWS CLI 2.34.19 Command Reference](../../index.html) » + * [AWS CLI 2.34.20 Command Reference](../../index.html) »