Status: IN
The `iam:PassRole` permission should explicitly list allowed role ARNs — wildcards (`*`) in the Resource element for PassRole is a security anti-pattern.
Source: entries/2026/03/11/IAM-latest-UserGuide-security-audit-guidehtml.md
JSON