Blocked Decision
aws:iam · CreateRole
← Back to audit trail
DENY
aws:iam CreateRole
Decision
DENY
Rule
block-aws-iam-writes
Reason
IAM modifications can escalate privilege.
Agent
payment-processor
Environment
prod
User
system
Task
reconcile transactions
Session
sess-cc1a1dfd
Received
5/29/2026, 8:31:51 PM
Event time
5/29/2026, 4:59:46 AM
Model verdict
Reserved for the v2 context-aware decision modelNot yet evaluated — populated automatically once the v2 model lands.