AWS rosa documentation change
Summary
Added documentation history entry for April 9, 2026, noting updates to ROSAControlPlaneOperatorPolicy to allow tagging of security groups and fix VPCE reconciliation failures during cluster upgrades.
Security assessment
While the change involves security groups and policy updates, it describes operational improvements for resource lifecycle management and fixing reconciliation failures. There is no mention of security vulnerabilities being addressed, only policy enhancements for proper management.
Diff
diff --git a/rosa/latest/userguide/doc-history.md b/rosa/latest/userguide/doc-history.md index ee94e5e14..2036f52bb 100644 --- a//rosa/latest/userguide/doc-history.md +++ b//rosa/latest/userguide/doc-history.md @@ -10,0 +11 @@ Change| Description| Date +Updated ROSAControlPlaneOperatorPolicy| Updated the AWS managed policy ROSAControlPlaneOperatorPolicy to allow tagging of Red Hat-managed security groups for proper resource lifecycle management and to add security-group/* to ManageVPCEndpointWithCondition to fix VPCE reconciliation failures during cluster upgrades. For more information, see [ROSA updates to AWS managed policies](https://docs.aws.amazon.com/rosa/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-account-updates).| April 9, 2026