Skip to content

Commit b941d88

Browse files
author
Ian Mckay [bot]
committed
Update SAR data
1 parent 31fe9a4 commit b941d88

13 files changed

+3202
-1151
lines changed

aws/docs.json

Lines changed: 5 additions & 5 deletions
Large diffs are not rendered by default.

aws/historic_counts.json

Lines changed: 8 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -8335,6 +8335,10 @@
83358335
{
83368336
"count": 17882,
83378337
"date": "2026-02-16T15:21:36"
8338+
},
8339+
{
8340+
"count": 17882,
8341+
"date": "2026-02-17T15:19:40"
83388342
}
83398343
],
83408344
"iam": [
@@ -15269,6 +15273,10 @@
1526915273
{
1527015274
"count": 20314,
1527115275
"date": "2026-02-16T15:21:36"
15276+
},
15277+
{
15278+
"count": 20315,
15279+
"date": "2026-02-17T15:19:40"
1527215280
}
1527315281
]
1527415282
}

aws/iam_definition.json

Lines changed: 38 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -246432,7 +246432,7 @@
246432246432
},
246433246433
{
246434246434
"condition": "payment-cryptography:ImportKeyMaterial",
246435-
"description": "Filters access by the type of key material being imported [RootCertificatePublicKey, TrustedCertificatePublicKey, Tr34KeyBlock, Tr31KeyBlock] for the ImportKey operation",
246435+
"description": "Filters access by the type of key material being imported [RootCertificatePublicKey, TrustedCertificatePublicKey, Tr34KeyBlock, Tr31KeyBlock, DiffieHellmanTr31KeyBlock, As2805KeyCryptogram] for the ImportKey operation",
246436246436
"type": "String"
246437246437
},
246438246438
{
@@ -246661,6 +246661,30 @@
246661246661
}
246662246662
]
246663246663
},
246664+
{
246665+
"access_level": "Write",
246666+
"description": "Grants permission to generate a KekValidationRequest or a KekValidationResponse for node-to-node initialization between payment processing nodes using Australian Standard 2805 (AS2805)",
246667+
"privilege": "GenerateAs2805KekValidation",
246668+
"resource_types": [
246669+
{
246670+
"condition_keys": [],
246671+
"dependent_actions": [],
246672+
"resource_type": "alias*"
246673+
},
246674+
{
246675+
"condition_keys": [],
246676+
"dependent_actions": [],
246677+
"resource_type": "key*"
246678+
},
246679+
{
246680+
"condition_keys": [
246681+
"payment-cryptography:RequestAlias"
246682+
],
246683+
"dependent_actions": [],
246684+
"resource_type": ""
246685+
}
246686+
]
246687+
},
246664246688
{
246665246689
"access_level": "Write",
246666246690
"description": "Grants permission to generate card-related data using algorithms such as Card Verification Values (CVV/CVV2), Dynamic Card Verification Values (dCVV/dCVV2) or Card Security Codes (CSC) that check the validity of a magnetic stripe card",
@@ -331197,7 +331221,7 @@
331197331221
{
331198331222
"condition": "sts:IdentityTokenAudience",
331199331223
"description": "Filters access by the audience that is passed in the request",
331200-
"type": "String"
331224+
"type": "ArrayOfString"
331201331225
},
331202331226
{
331203331227
"condition": "sts:RequestContext/${ContextKey}",
@@ -352295,6 +352319,11 @@
352295352319
"condition": "aws:TagKeys",
352296352320
"description": "Filters access by the tag keys that are passed in the request",
352297352321
"type": "ArrayOfString"
352322+
},
352323+
{
352324+
"condition": "workmail:ImpersonationRoleId",
352325+
"description": "Filters access by the ImpersonationRoleId that is passed in the request",
352326+
"type": "String"
352298352327
}
352299352328
],
352300352329
"prefix": "workmail",
@@ -352344,6 +352373,13 @@
352344352373
"condition_keys": [],
352345352374
"dependent_actions": [],
352346352375
"resource_type": "organization*"
352376+
},
352377+
{
352378+
"condition_keys": [
352379+
"workmail:ImpersonationRoleId"
352380+
],
352381+
"dependent_actions": [],
352382+
"resource_type": ""
352347352383
}
352348352384
]
352349352385
},

aws/managed_policies.json

Lines changed: 26 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -15351,6 +15351,7 @@
1535115351
"payment-cryptography:EnableDefaultKeyReplicationRegions",
1535215352
"payment-cryptography:EncryptData",
1535315353
"payment-cryptography:ExportKey",
15354+
"payment-cryptography:GenerateAs2805KekValidation",
1535415355
"payment-cryptography:GenerateCardValidationData",
1535515356
"payment-cryptography:GenerateMac",
1535615357
"payment-cryptography:GenerateMacEmvPinChange",
@@ -54349,6 +54350,28 @@
5434954350
"updatedate": "2026-02-12T18:02:20+00:00",
5435054351
"version": "v5"
5435154352
},
54353+
{
54354+
"access_levels": [
54355+
"Write"
54356+
],
54357+
"arn": "arn:aws:iam::aws:policy/aws-service-role/AWSServiceRoleForAIDevOpsPolicy",
54358+
"createdate": "2026-02-16T14:27:07Z",
54359+
"credentials_exposure": false,
54360+
"data_access": false,
54361+
"deprecated": false,
54362+
"effective_action_names": [
54363+
"cloudwatch:PutMetricData"
54364+
],
54365+
"grantless": false,
54366+
"malformed": false,
54367+
"name": "AWSServiceRoleForAIDevOpsPolicy",
54368+
"privesc": false,
54369+
"resource_exposure": false,
54370+
"undocumented_actions": false,
54371+
"unknown_actions": false,
54372+
"updatedate": "2026-02-16T14:27:07+00:00",
54373+
"version": "v1"
54374+
},
5435254375
{
5435354376
"access_levels": [
5435454377
"List",
@@ -95759,6 +95782,7 @@
9575995782
"payment-cryptography:EnableDefaultKeyReplicationRegions",
9576095783
"payment-cryptography:EncryptData",
9576195784
"payment-cryptography:ExportKey",
95785+
"payment-cryptography:GenerateAs2805KekValidation",
9576295786
"payment-cryptography:GenerateCardValidationData",
9576395787
"payment-cryptography:GenerateMac",
9576495788
"payment-cryptography:GenerateMacEmvPinChange",
@@ -138518,7 +138542,7 @@
138518138542
"resource_exposure": true,
138519138543
"undocumented_actions": false,
138520138544
"unknown_actions": false,
138521-
"updatedate": "2026-02-12T18:00:03+00:00",
138545+
"updatedate": "2026-02-17T06:57:11+00:00",
138522138546
"version": "v61"
138523138547
},
138524138548
{
@@ -197660,6 +197684,7 @@
197660197684
"payment-cryptography:EnableDefaultKeyReplicationRegions",
197661197685
"payment-cryptography:EncryptData",
197662197686
"payment-cryptography:ExportKey",
197687+
"payment-cryptography:GenerateAs2805KekValidation",
197663197688
"payment-cryptography:GenerateCardValidationData",
197664197689
"payment-cryptography:GenerateMac",
197665197690
"payment-cryptography:GenerateMacEmvPinChange",

aws/managedpolicies/AWSMcpServiceActionsFullAccess.json

Lines changed: 14 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -194953,6 +194953,20 @@
194953194953
"privesc": false,
194954194954
"resource_exposure": false
194955194955
},
194956+
{
194957+
"access_level": "Write",
194958+
"action": "*",
194959+
"condition": {
194960+
"Bool": {
194961+
"aws:IsMcpServiceAction": "true"
194962+
}
194963+
},
194964+
"credentials_exposure": false,
194965+
"data_access": false,
194966+
"effective_action": "payment-cryptography:GenerateAs2805KekValidation",
194967+
"privesc": false,
194968+
"resource_exposure": false
194969+
},
194956194970
{
194957194971
"access_level": "Write",
194958194972
"action": "*",

aws/managedpolicies/AWSServiceRoleForAIDevOpsPolicy.json

Lines changed: 57 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,57 @@
1+
{
2+
"access_levels": [
3+
"Write"
4+
],
5+
"arn": "arn:aws:iam::aws:policy/aws-service-role/AWSServiceRoleForAIDevOpsPolicy",
6+
"createdate": "2026-02-16T14:27:07Z",
7+
"credentials_exposure": false,
8+
"data_access": false,
9+
"deprecated": false,
10+
"document": {
11+
"Statement": [
12+
{
13+
"Action": [
14+
"cloudwatch:PutMetricData"
15+
],
16+
"Condition": {
17+
"StringEquals": {
18+
"cloudwatch:namespace": [
19+
"AWS/AIDevOps"
20+
]
21+
}
22+
},
23+
"Effect": "Allow",
24+
"Resource": "*",
25+
"Sid": "sid1"
26+
}
27+
],
28+
"Version": "2012-10-17"
29+
},
30+
"effective_actions": [
31+
{
32+
"access_level": "Write",
33+
"action": "cloudwatch:PutMetricData",
34+
"condition": {
35+
"StringEquals": {
36+
"cloudwatch:namespace": [
37+
"AWS/AIDevOps"
38+
]
39+
}
40+
},
41+
"credentials_exposure": false,
42+
"data_access": false,
43+
"effective_action": "cloudwatch:PutMetricData",
44+
"privesc": false,
45+
"resource_exposure": false
46+
}
47+
],
48+
"grantless": false,
49+
"malformed": false,
50+
"name": "AWSServiceRoleForAIDevOpsPolicy",
51+
"privesc": false,
52+
"resource_exposure": false,
53+
"undocumented_actions": false,
54+
"unknown_actions": [],
55+
"updatedate": "2026-02-16T14:27:07+00:00",
56+
"version": "v1"
57+
}

aws/managedpolicies/AdministratorAccess.json

Lines changed: 10 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -139255,6 +139255,16 @@
139255139255
"privesc": false,
139256139256
"resource_exposure": false
139257139257
},
139258+
{
139259+
"access_level": "Write",
139260+
"action": "*",
139261+
"condition": null,
139262+
"credentials_exposure": false,
139263+
"data_access": false,
139264+
"effective_action": "payment-cryptography:GenerateAs2805KekValidation",
139265+
"privesc": false,
139266+
"resource_exposure": false
139267+
},
139258139268
{
139259139269
"access_level": "Write",
139260139270
"action": "*",

0 commit comments

Comments
 (0)