Skip to content

Updates AWS managed policies #1809

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
udondan merged 1 commit into from
Jan 17, 2026
Merged

Updates AWS managed policies #1809

udondan merged 1 commit into from
Jan 17, 2026

Conversation

@udondan
Copy link
Owner

@udondan udondan commented Jan 17, 2026
edited by coderabbitai bot
Loading

Updates AWS managed policies

Summary by CodeRabbit

  • Documentation
    • Updated CodeBuild administration policy to include Systems Manager session permissions
    • Expanded Network Firewall read-only policy with proxy and metadata access permissions
    • Added new SageMaker HyperPod managed policy for hub content access

✏️ Tip: You can customize this high-level summary in your review settings.

@coderabbitai
Copy link

coderabbitai bot commented Jan 17, 2026

Walkthrough

Updates three AWS managed IAM policy JSON files: adds SSM data channel access permission to CodeBuild policy, expands Network Firewall read-only policy with proxy and metadata actions, and creates a new SageMaker HyperPod gated model access policy.

Changes

Cohort / File(s) Summary
Managed IAM Policies - SSM Permissions
docs/source/_static/managed-policies/AWSCodeBuildAdminAccess.json		 Adds SSMOpenDataChannelAccess statement allowing ssmmessages:OpenDataChannel action on SSM session resources
Managed IAM Policies - Firewall Read-Only Expansion
docs/source/_static/managed-policies/AWSNetworkFirewallReadOnlyAccess.json		 Adds read-only actions for proxy and firewall metadata operations (ListProxies, ListProxyConfigurations, DescribeProxy, etc.)
Managed IAM Policies - New SageMaker Policy
docs/source/_static/managed-policies/AmazonSageMakerHyperPodGatedModelAccess.json		 Creates new policy file allowing sagemaker:CreateHubContentPresignedUrls on SageMaker hub resources with account-matching condition

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~10 minutes

Possibly related PRs

🚥 Pre-merge checks | ✅ 3
✅ Passed checks (3 passed)
Check name Status Explanation
Description Check ✅ Passed Check skipped - CodeRabbit’s high-level summary is enabled.
Title check ✅ Passed The title 'Updates AWS managed policies' accurately describes the changeset, which adds new IAM policy statements and actions to three AWS managed policy files.
Docstring Coverage ✅ Passed No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

✏️ Tip: You can configure your own custom pre-merge checks in the settings.

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands and usage tips.

@udondan udondan merged commit 0fe853d into main Jan 17, 2026
9 checks passed
@udondan udondan deleted the update-aws-managed-policies branch January 17, 2026 01:38
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

automerge

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@udondan