AWS Security ChangesHomeSearch

AWS prescriptive-guidance documentation change

Service: prescriptive-guidance · 2026-06-25 · Documentation low

File: prescriptive-guidance/latest/security-controls-by-caf-capability/infrastructure-controls.md

Summary

Removed hyperlink to glossary definition for 'least privilege' in security group guidance

Security assessment

Change only removes glossary reference while retaining the security recommendation to apply least privilege to security groups.

Diff

diff --git a/prescriptive-guidance/latest/security-controls-by-caf-capability/infrastructure-controls.md b/prescriptive-guidance/latest/security-controls-by-caf-capability/infrastructure-controls.md
index 6b3e789c2..43932db38 100644
--- a//prescriptive-guidance/latest/security-controls-by-caf-capability/infrastructure-controls.md
+++ b//prescriptive-guidance/latest/security-controls-by-caf-capability/infrastructure-controls.md
@@ -136 +136 @@ AWS recommends that you don't use the default security group. Instead, create cu
-Because the default security group can't be deleted, we recommend that you change the default security group rules to restrict inbound and outbound traffic. When configuring security group rules, follow the principle of [least privilege](./apg-gloss.html#glossary-least-privilege).
+Because the default security group can't be deleted, we recommend that you change the default security group rules to restrict inbound and outbound traffic. When configuring security group rules, follow the principle of least privilege.