AWS code-library documentation change
Summary
Added tagging commands for IAM roles and S3 buckets with project/tutorial tags
Security assessment
The changes add resource tagging for organizational purposes but do not address security vulnerabilities or document security features. Tagging helps with resource management but does not directly impact security controls.
Diff
diff --git a/code-library/latest/ug/iam_example_iam_GettingStarted_028_section.md b/code-library/latest/ug/iam_example_iam_GettingStarted_028_section.md index e84f34cc7..9566b0cb6 100644 --- a//code-library/latest/ug/iam_example_iam_GettingStarted_028_section.md +++ b//code-library/latest/ug/iam_example_iam_GettingStarted_028_section.md @@ -157,0 +158,4 @@ There's more on GitHub. Find the complete example and learn how to set up and ru + # Tag the role + echo "Tagging IAM role..." >&2 + aws iam tag-role --role-name "$role_name" --tags Key=project,Value=doc-smith Key=tutorial,Value=sagemaker-featurestore 2>&1 + @@ -271,0 +276,4 @@ There's more on GitHub. Find the complete example and learn how to set up and ru + # Tag the S3 bucket + echo "Tagging S3 bucket: $S3_BUCKET_NAME" + aws s3api put-bucket-tagging --bucket "$S3_BUCKET_NAME" --tagging 'TagSet=[{Key=project,Value=doc-smith},{Key=tutorial,Value=sagemaker-featurestore}]' 2>&1 + @@ -312 +320,2 @@ There's more on GitHub. Find the complete example and learn how to set up and ru - --role-arn "$ROLE_ARN" 2>&1) + --role-arn "$ROLE_ARN" \ + --tags Key=project,Value=doc-smith Key=tutorial,Value=sagemaker-featurestore 2>&1) @@ -347 +356,2 @@ There's more on GitHub. Find the complete example and learn how to set up and ru - --role-arn "$ROLE_ARN" 2>&1) + --role-arn "$ROLE_ARN" \ + --tags Key=project,Value=doc-smith Key=tutorial,Value=sagemaker-featurestore 2>&1)