AWS emr documentation change
Summary
Added a 'Principal' block with Service 'emr-serverless.amazonaws.com' to a JSON policy example.
Security assessment
This change adds a missing Principal specification in an IAM policy example, which is necessary for proper IAM role trust policies. While this improves security documentation by providing a complete example, there's no evidence it addresses a specific security vulnerability. It appears to be a documentation correction or enhancement for proper IAM configuration.
Diff
diff --git a/emr/latest/EMR-Serverless-UserGuide/application-custom-image.md b/emr/latest/EMR-Serverless-UserGuide/application-custom-image.md index 376d8a1da..9060e69f2 100644 --- a//emr/latest/EMR-Serverless-UserGuide/application-custom-image.md +++ b//emr/latest/EMR-Serverless-UserGuide/application-custom-image.md @@ -217,0 +218,3 @@ JSON + "Principal": { + "Service": "emr-serverless.amazonaws.com" + },