{"slug":"iam-aws-bedrock","cloud":"aws","service":"bedrock","title":"Amazon Bedrock (IAM)","description":"Amazon Bedrock is a fully managed service that makes foundation models from leading AI companies accessible via an API to build generative AI applications.","category":"ml","common_permissions":["bedrock:ListAgents","bedrock:GetAgent","bedrock:InvokeAgent","bedrock:ListFlows","bedrock:GetFlow","bedrock:InvokeFlow","bedrock:ListPrompts","bedrock:GetPrompt"],"least_privilege_example":"{\n  \"Version\": \"2012-10-17\",\n  \"Statement\": [\n    {\n      \"Effect\": \"Allow\",\n      \"Action\": [\n        \"bedrock:ListAgents\",\n        \"bedrock:GetAgent\",\n        \"bedrock:InvokeAgent\",\n        \"bedrock:ListFlows\",\n        \"bedrock:GetFlow\",\n        \"bedrock:InvokeFlow\",\n        \"bedrock:ListPrompts\",\n        \"bedrock:GetPrompt\"\n      ],\n      \"Resource\": \"*\"\n    }\n  ]\n}","warnings":["Avoid bedrock:* — grants full control including delete and modify of agents, flows, and prompts","Avoid bedrock:DeleteAgent and bedrock:DeleteFlow unless explicitly needed for cleanup"],"docs":"https://servicereference.us-east-1.amazonaws.com/v1/bedrock/bedrock.json","tags":["iam","aws"],"last_verified":"2026-06-14T00:00:00.000Z","next_check":"2026-12-11T00:00:00.000Z","created_at":"2026-06-14T04:50:08.485Z","updated_at":"2026-06-14T04:50:08.485Z"}