AWS deadline-cloud documentation change
Summary
Added iam:ListAttachedRolePolicies to IAM policy actions and added deadline:GetMonitorSettings and deadline:UpdateMonitorSettings actions to Deadline Cloud policy
Security assessment
This change expands IAM policy examples to include additional permissions. Adding iam:ListAttachedRolePolicies helps with auditing role permissions, while the new deadline actions appear to be for monitoring functionality. These are routine policy updates to support new features rather than addressing a specific security vulnerability.
Diff
diff --git a/deadline-cloud/latest/developerguide/security_iam_id-based-policy-examples.md b/deadline-cloud/latest/developerguide/security_iam_id-based-policy-examples.md index 224df444c..bfd5760f4 100644 --- a//deadline-cloud/latest/developerguide/security_iam_id-based-policy-examples.md +++ b//deadline-cloud/latest/developerguide/security_iam_id-based-policy-examples.md @@ -146 +146 @@ JSON - "Action": ["iam:GetRole", "iam:ListRoles"], + "Action": ["iam:GetRole", "iam:ListRoles", "iam:ListAttachedRolePolicies"], @@ -300 +300,3 @@ JSON - "deadline:DeleteMeteredProduct" + "deadline:DeleteMeteredProduct", + "deadline:GetMonitorSettings", + "deadline:UpdateMonitorSettings"