Status: IN
DynamoDB supports attribute-level access control using the `dynamodb:Attributes` condition key with `ForAllValues:StringEquals` to restrict which attributes can be read or written, and `dynamodb:Select` set to `SPECIFIC_ATTRIBUTES` to prevent leaking disallowed attributes through index projections.
Source: entries/2026/03/11/IAM-latest-UserGuide-reference_policies_examples_dynamodb_attributeshtml.md