Skip to content

Commit 8bb6fb0

Browse files
author
MAMIP Bot
committed
AWSConfigServiceRolePolicy - Policy Version v61
1 parent b08bac9 commit 8bb6fb0

File tree

1 file changed

+76
-3
lines changed

1 file changed

+76
-3
lines changed

policies/AWSConfigServiceRolePolicy

Lines changed: 76 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"PolicyVersion": {
3-
"CreateDate": "2025-07-28T20:37:08Z",
4-
"VersionId": "v60",
3+
"CreateDate": "2025-10-07T20:04:07Z",
4+
"VersionId": "v61",
55
"Document": {
66
"Version": "2012-10-17",
77
"Statement": [
@@ -26,8 +26,11 @@
2626
"airflow:ListTagsForResource",
2727
"amplify:GetApp",
2828
"amplify:GetBranch",
29+
"amplify:GetDomainAssociation",
2930
"amplify:ListApps",
3031
"amplify:ListBranches",
32+
"amplify:ListDomainAssociations",
33+
"amplify:ListTagsForResource",
3134
"amplifyuibuilder:ExportThemes",
3235
"amplifyuibuilder:GetTheme",
3336
"amplifyuibuilder:ListThemes",
@@ -100,7 +103,9 @@
100103
"appstream:ListTagsForResource",
101104
"appsync:GetApiCache",
102105
"appsync:GetGraphqlApi",
106+
"appsync:GetSourceApiAssociation",
103107
"appsync:ListGraphqlApis",
108+
"appsync:ListSourceApiAssociations",
104109
"aps:DescribeAlertManagerDefinition",
105110
"aps:DescribeLoggingConfiguration",
106111
"APS:DescribeRuleGroupsNamespace",
@@ -165,25 +170,37 @@
165170
"bcm-data-exports:GetExport",
166171
"bcm-data-exports:ListExports",
167172
"bcm-data-exports:ListTagsForResource",
173+
"bedrock-agentcore:GetAgentRuntime",
174+
"bedrock-agentcore:GetAgentRuntimeEndpoint",
175+
"bedrock-agentcore:GetBrowser",
176+
"bedrock-agentcore:GetCodeInterpreter",
177+
"bedrock-agentcore:ListAgentRuntimeEndpoints",
178+
"bedrock-agentcore:ListAgentRuntimes",
179+
"bedrock-agentcore:ListBrowsers",
180+
"bedrock-agentcore:ListCodeInterpreters",
168181
"bedrock:GetAgent",
169182
"bedrock:GetAgentActionGroup",
170183
"bedrock:GetAgentKnowledgeBase",
171184
"bedrock:GetDataSource",
185+
"bedrock:GetFlow",
172186
"bedrock:GetFlowAlias",
173187
"bedrock:GetFlowVersion",
174188
"bedrock:GetGuardrail",
175189
"bedrock:GetInferenceProfile",
176190
"bedrock:GetKnowledgeBase",
177191
"bedrock:GetModelInvocationLoggingConfiguration",
178192
"bedrock:ListAgentActionGroups",
193+
"bedrock:ListAgentCollaborators",
179194
"bedrock:ListAgentKnowledgeBases",
180195
"bedrock:ListAgents",
181196
"bedrock:ListDataSources",
182197
"bedrock:ListFlowAliases",
183198
"bedrock:ListFlowVersions",
199+
"bedrock:ListFlows",
184200
"bedrock:ListGuardrails",
185201
"bedrock:ListInferenceProfiles",
186202
"bedrock:ListKnowledgeBases",
203+
"bedrock:ListPrompts",
187204
"bedrock:ListTagsForResource",
188205
"billingconductor:ListAccountAssociations",
189206
"billingconductor:ListBillingGroups",
@@ -213,6 +230,7 @@
213230
"cloud9:ListEnvironments",
214231
"cloud9:ListTagsForResource",
215232
"cloudformation:BatchDescribeTypeConfigurations",
233+
"cloudformation:DescribePublisher",
216234
"cloudformation:DescribeStackInstance",
217235
"cloudformation:DescribeStackSet",
218236
"cloudformation:DescribeType",
@@ -241,6 +259,7 @@
241259
"cloudtrail:GetEventDataStore",
242260
"cloudtrail:GetEventSelectors",
243261
"cloudtrail:GetInsightSelectors",
262+
"cloudtrail:GetResourcePolicy",
244263
"cloudtrail:GetTrailStatus",
245264
"cloudTrail:ListChannels",
246265
"cloudtrail:ListEventDataStores",
@@ -255,10 +274,13 @@
255274
"cloudwatch:ListMetricStreams",
256275
"cloudwatch:ListTagsForResource",
257276
"codeartifact:DescribeDomain",
277+
"codeartifact:DescribePackageGroup",
258278
"codeartifact:DescribeRepository",
259279
"codeartifact:GetDomainPermissionsPolicy",
260280
"codeartifact:GetRepositoryPermissionsPolicy",
281+
"codeartifact:ListAllowedRepositoriesForGroup",
261282
"codeartifact:ListDomains",
283+
"codeartifact:ListPackageGroups",
262284
"codeartifact:ListPackages",
263285
"codeartifact:ListPackageVersions",
264286
"codeartifact:ListRepositories",
@@ -281,7 +303,10 @@
281303
"codeguru-reviewer:ListRepositoryAssociations",
282304
"codepipeline:GetPipeline",
283305
"codepipeline:GetPipelineState",
306+
"codepipeline:ListActionTypes",
284307
"codepipeline:ListPipelines",
308+
"codepipeline:ListTagsForResource",
309+
"codepipeline:ListWebhooks",
285310
"cognito-identity:DescribeIdentityPool",
286311
"cognito-identity:GetIdentityPoolRoles",
287312
"cognito-identity:GetPrincipalTagAttributeMap",
@@ -319,6 +344,7 @@
319344
"connect:DescribeRoutingProfile",
320345
"connect:DescribeRule",
321346
"connect:DescribeSecurityProfile",
347+
"connect:DescribeTrafficDistributionGroup",
322348
"connect:DescribeUser",
323349
"connect:GetTaskTemplate",
324350
"connect:ListApprovedOrigins",
@@ -342,6 +368,7 @@
342368
"connect:ListSecurityProfiles",
343369
"connect:ListTagsForResource",
344370
"connect:ListTaskTemplates",
371+
"connect:ListTrafficDistributionGroups",
345372
"connect:ListUsers",
346373
"connect:SearchAvailablePhoneNumbers",
347374
"databrew:DescribeDataset",
@@ -380,6 +407,7 @@
380407
"dax:ListTags",
381408
"deadline:GetFleet",
382409
"deadline:GetQueueFleetAssociation",
410+
"deadline:ListFarms",
383411
"deadline:ListFleets",
384412
"deadline:ListQueueFleetAssociations",
385413
"deadline:ListTagsForResource",
@@ -446,6 +474,9 @@
446474
"ec2:GetNetworkInsightsAccessScopeAnalysisFindings",
447475
"ec2:GetNetworkInsightsAccessScopeContent",
448476
"ec2:GetSnapshotBlockPublicAccessState",
477+
"ec2:GetTransitGatewayRouteTablePropagations",
478+
"ec2:SearchLocalGatewayRoutes",
479+
"ec2:SearchTransitGatewayMulticastGroups",
449480
"ecr-public:DescribeRepositories",
450481
"ecr-public:GetRepositoryCatalogData",
451482
"ecr-public:GetRepositoryPolicy",
@@ -536,8 +567,10 @@
536567
"emr-serverless:ListApplications",
537568
"emr-serverless:ListJobRuns",
538569
"entityresolution:GetIdMappingWorkflow",
570+
"entityresolution:GetMatchingWorkflow",
539571
"entityresolution:GetSchemaMapping",
540572
"entityresolution:ListIdMappingWorkflows",
573+
"entityresolution:ListMatchingWorkflows",
541574
"entityresolution:ListSchemaMappings",
542575
"entityresolution:ListTagsForResource",
543576
"es:DescribeDomain",
@@ -862,8 +895,12 @@
862895
"iotsitewise:DescribePortal",
863896
"iotsitewise:DescribeProject",
864897
"iotsitewise:ListAccessPolicies",
898+
"iotsitewise:ListAssetModelCompositeModels",
899+
"iotsitewise:ListAssetModelProperties",
865900
"iotsitewise:ListAssetModels",
901+
"iotsitewise:ListAssetProperties",
866902
"iotsitewise:ListAssets",
903+
"iotsitewise:ListAssociatedAssets",
867904
"iotsitewise:ListDashboards",
868905
"iotsitewise:ListGateways",
869906
"iotsitewise:ListPortals",
@@ -910,6 +947,7 @@
910947
"ivs:ListEncoderConfigurations",
911948
"ivs:ListPlaybackKeyPairs",
912949
"ivs:ListPlaybackRestrictionPolicies",
950+
"ivs:ListPublicKeys",
913951
"ivs:ListRecordingConfigurations",
914952
"ivs:ListStages",
915953
"ivs:ListStorageConfigurations",
@@ -974,9 +1012,13 @@
9741012
"lambda:GetFunctionCodeSigningConfig",
9751013
"lambda:GetLayerVersion",
9761014
"lambda:GetPolicy",
1015+
"lambda:GetProvisionedConcurrencyConfig",
1016+
"lambda:GetRuntimeManagementConfig",
9771017
"lambda:ListAliases",
9781018
"lambda:ListCodeSigningConfigs",
9791019
"lambda:ListEventSourceMappings",
1020+
"lambda:ListFunctionEventInvokeConfigs",
1021+
"lambda:ListFunctionUrlConfigs",
9801022
"lambda:ListFunctions",
9811023
"lambda:ListLayers",
9821024
"lambda:ListLayerVersions",
@@ -1191,6 +1233,8 @@
11911233
"personalize:ListSchemas",
11921234
"personalize:ListSolutions",
11931235
"personalize:ListTagsForResource",
1236+
"pipes:DescribePipe",
1237+
"pipes:ListPipes",
11941238
"profile:GetDomain",
11951239
"profile:GetIntegration",
11961240
"profile:GetProfileObjectType",
@@ -1211,6 +1255,7 @@
12111255
"quicksight:DescribeDataSetRefreshProperties",
12121256
"quicksight:DescribeDataSource",
12131257
"quicksight:DescribeDataSourcePermissions",
1258+
"quicksight:DescribeRefreshSchedule",
12141259
"quicksight:DescribeTemplate",
12151260
"quicksight:DescribeTemplatePermissions",
12161261
"quicksight:DescribeTheme",
@@ -1219,6 +1264,7 @@
12191264
"quicksight:ListDashboards",
12201265
"quicksight:ListDataSets",
12211266
"quicksight:ListDataSources",
1267+
"quicksight:ListRefreshSchedules",
12221268
"quicksight:ListTagsForResource",
12231269
"quicksight:ListTemplates",
12241270
"quicksight:ListThemes",
@@ -1258,6 +1304,7 @@
12581304
"redshift-serverless:GetNamespace",
12591305
"redshift-serverless:GetWorkgroup",
12601306
"redshift-serverless:ListNamespaces",
1307+
"redshift-serverless:ListSnapshotCopyConfigurations",
12611308
"redshift-serverless:ListTagsForResource",
12621309
"redshift-serverless:ListWorkgroups",
12631310
"redshift:DescribeClusterParameterGroups",
@@ -1273,6 +1320,7 @@
12731320
"redshift:DescribeLoggingStatus",
12741321
"redshift:DescribeScheduledActions",
12751322
"redshift:DescribeTags",
1323+
"redshift:GetResourcePolicy",
12761324
"refactor-spaces:GetEnvironment",
12771325
"refactor-spaces:GetService",
12781326
"refactor-spaces:ListApplications",
@@ -1302,8 +1350,10 @@
13021350
"robomaker:DescribeSimulationApplication",
13031351
"robomaker:ListRobotApplications",
13041352
"robomaker:ListSimulationApplications",
1353+
"rolesanywhere:GetCrl",
13051354
"rolesanywhere:GetProfile",
13061355
"rolesanywhere:GetTrustAnchor",
1356+
"rolesanywhere:ListCrls",
13071357
"rolesanywhere:ListProfiles",
13081358
"rolesanywhere:ListTagsForResource",
13091359
"rolesanywhere:ListTrustAnchors",
@@ -1429,6 +1479,7 @@
14291479
"s3tables:GetTableBucketEncryption",
14301480
"s3tables:GetTableBucketMaintenanceConfiguration",
14311481
"s3tables:ListTableBuckets",
1482+
"sagemaker:DescribeApp",
14321483
"sagemaker:DescribeAppImageConfig",
14331484
"sagemaker:DescribeCluster",
14341485
"sagemaker:DescribeCodeRepository",
@@ -1452,8 +1503,10 @@
14521503
"sagemaker:DescribePipeline",
14531504
"sagemaker:DescribeProject",
14541505
"sagemaker:DescribeStudioLifecycleConfig",
1506+
"sagemaker:DescribeUserProfile",
14551507
"sagemaker:DescribeWorkteam",
14561508
"sagemaker:ListAppImageConfigs",
1509+
"sagemaker:ListApps",
14571510
"sagemaker:ListClusters",
14581511
"sagemaker:ListCodeRepositories",
14591512
"sagemaker:ListDataQualityJobDefinitions",
@@ -1468,6 +1521,7 @@
14681521
"sagemaker:ListMlflowTrackingServers",
14691522
"sagemaker:ListModelBiasJobDefinitions",
14701523
"sagemaker:ListModelExplainabilityJobDefinitions",
1524+
"sagemaker:ListModelPackages",
14711525
"sagemaker:ListModelQualityJobDefinitions",
14721526
"sagemaker:ListModels",
14731527
"sagemaker:ListMonitoringSchedules",
@@ -1477,6 +1531,7 @@
14771531
"sagemaker:ListProjects",
14781532
"sagemaker:ListStudioLifecycleConfigs",
14791533
"sagemaker:ListTags",
1534+
"sagemaker:ListUserProfiles",
14801535
"sagemaker:ListWorkteams",
14811536
"scheduler:GetSchedule",
14821537
"scheduler:GetScheduleGroup",
@@ -1493,6 +1548,7 @@
14931548
"sdb:GetAttributes",
14941549
"sdb:ListDomains",
14951550
"secretsmanager:DescribeSecret",
1551+
"secretsmanager:GetResourcePolicy",
14961552
"secretsmanager:ListSecrets",
14971553
"secretsmanager:ListSecretVersionIds",
14981554
"securityhub:DescribeHub",
@@ -1501,8 +1557,13 @@
15011557
"securitylake:ListDataLakeExceptions",
15021558
"securitylake:ListDataLakes",
15031559
"securitylake:ListLogSources",
1560+
"securitylake:ListSubscribers",
1561+
"securitylake:ListTagsForResource",
15041562
"serviceCatalog:DescribePortfolioShares",
1563+
"servicecatalog:DescribeServiceAction",
15051564
"servicecatalog:GetAttributeGroup",
1565+
"servicecatalog:ListApplications",
1566+
"servicecatalog:ListAssociatedResources",
15061567
"servicecatalog:ListAttributeGroups",
15071568
"servicecatalog:ListServiceActions",
15081569
"servicecatalog:ListServiceActionsForProvisioningArtifact",
@@ -1535,6 +1596,8 @@
15351596
"shield:DescribeDRTAccess",
15361597
"shield:DescribeProtection",
15371598
"shield:DescribeSubscription",
1599+
"shield:ListProtectionGroups",
1600+
"shield:ListTagsForResource",
15381601
"signer:GetSigningProfile",
15391602
"signer:ListProfilePermissions",
15401603
"signer:ListSigningProfiles",
@@ -1553,21 +1616,30 @@
15531616
"ssm-contacts:GetContactChannel",
15541617
"ssm-contacts:ListContactChannels",
15551618
"ssm-contacts:ListContacts",
1619+
"ssm-incidents:GetReplicationSet",
15561620
"ssm-incidents:GetResponsePlan",
1621+
"ssm-incidents:ListReplicationSets",
15571622
"ssm-incidents:ListResponsePlans",
15581623
"ssm-incidents:ListTagsForResource",
15591624
"ssm-quicksetup:GetConfigurationManager",
15601625
"ssm-quicksetup:ListConfigurationManagers",
15611626
"ssm-sap:ListTagsForResource",
1627+
"ssm:DescribeAssociation",
15621628
"ssm:DescribeAutomationExecutions",
15631629
"ssm:DescribeDocument",
15641630
"ssm:DescribeDocumentPermission",
15651631
"ssm:DescribeInstanceInformation",
15661632
"ssm:DescribeParameters",
1633+
"ssm:DescribePatchBaselines",
15671634
"ssm:GetAutomationExecution",
1635+
"ssm:GetDefaultPatchBaseline",
15681636
"ssm:GetDocument",
1637+
"ssm:GetPatchBaseline",
1638+
"ssm:GetResourcePolicies",
15691639
"ssm:GetServiceSetting",
1640+
"ssm:ListAssociations",
15701641
"ssm:ListDocuments",
1642+
"ssm:ListResourceDataSync",
15711643
"ssm:ListTagsForResource",
15721644
"sso:DescribeInstanceAccessControlAttributeConfiguration",
15731645
"sso:DescribePermissionSet",
@@ -1637,6 +1709,7 @@
16371709
"waf:GetWebACL",
16381710
"wafv2:GetLoggingConfiguration",
16391711
"wafv2:GetRuleGroup",
1712+
"wafv2:ListLoggingConfigurations",
16401713
"wafv2:ListRuleGroups",
16411714
"wafv2:ListTagsForResource",
16421715
"workspaces:DescribeConnectionAliases",
@@ -1705,6 +1778,6 @@
17051778
}
17061779
]
17071780
},
1708-
"IsDefaultVersion": false
1781+
"IsDefaultVersion": true
17091782
}
17101783
}

0 commit comments

Comments
 (0)