Blocked Decision
aws:iam · CreateRole
← Back to audit trail
DENY
aws:iam CreateRole
Decision
DENY
Rule
block-aws-iam-writes
Reason
IAM modifications can escalate privilege.
Agent
payment-processor
Environment
prod
User
system
Task
reconcile transactions
Session
sess-a0fb7603
Received
5/29/2026, 8:31:51 PM
Event time
5/28/2026, 8:40:14 PM
Model verdict
Reserved for the v2 context-aware decision modelNot yet evaluated — populated automatically once the v2 model lands.