AWS Security ChangesHomeSearch

AWS rosa documentation change

Service: rosa · 2026-04-10 · Documentation low

File: rosa/latest/userguide/doc-history.md

Summary

Added documentation history entry for April 9, 2026, noting updates to ROSAControlPlaneOperatorPolicy to allow tagging of security groups and fix VPCE reconciliation failures during cluster upgrades.

Security assessment

While the change involves security groups and policy updates, it describes operational improvements for resource lifecycle management and fixing reconciliation failures. There is no mention of security vulnerabilities being addressed, only policy enhancements for proper management.

Diff

diff --git a/rosa/latest/userguide/doc-history.md b/rosa/latest/userguide/doc-history.md
index ee94e5e14..2036f52bb 100644
--- a//rosa/latest/userguide/doc-history.md
+++ b//rosa/latest/userguide/doc-history.md
@@ -10,0 +11 @@ Change| Description| Date
+Updated ROSAControlPlaneOperatorPolicy| Updated the AWS managed policy ROSAControlPlaneOperatorPolicy to allow tagging of Red Hat-managed security groups for proper resource lifecycle management and to add security-group/* to ManageVPCEndpointWithCondition to fix VPCE reconciliation failures during cluster upgrades. For more information, see [ROSA updates to AWS managed policies](https://docs.aws.amazon.com/rosa/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-account-updates).| April 9, 2026