Update data_perimeter_governance_policy_1.json

Added APIs that neither use resource-based policies nor AWS RAM for external sharing to the governance policy

Author: SwaraGandhi

service_control_policies/data_perimeter_governance_policy_1.json

@@ -24,14 +24,19 @@
          "Action": [
             "ec2:ModifyImageAttribute",
             "ec2:ModifyFPGAImageAttribute",
+            "ec2:CreateNetworkInterfacePermission",
+            "ec2:EnableAddressTransfer",
             "ec2:ModifySnapshotAttribute",
             "ec2:ModifyVpcEndpointServicePermissions",
             "ssm:ModifyDocumentPermission",
             "rds:ModifyDBSnapshotAttribute",
             "rds:ModifyDBClusterSnapshotAttribute",
             "redshift:AuthorizeDataShare",
             "redshift:AuthorizeSnapshotAccess",
+            "redshift:AuthorizeEndpointAccess",
             "ds:ShareDirectory",
+            "directconnect:CreateDirectConnectGatewayAssociationProposal",
+            "detective:CreateMembers",
             "logs:PutSubscriptionFilter",
             "lakeformation:GrantPermissions",
             "lakeformation:BatchGrantPermissions",
@@ -42,7 +47,14 @@
             "guardduty:CreateMembers",
             "guardduty:InviteMembers",
             "auditmanager:StartAssessmentFrameworkShare",
-            "docdb:ModifyDBClusterSnapshots"
+            "docdb:ModifyDBClusterSnapshots",
+            "workspaces:UpdateWorkspaceImagePermission",
+            "oam:CreateLink",
+            "servicecatalog:CreatePortfolioShare",
+            "config:PutConfigurationAggregator",
+            "fis:CreateTargetAccountConfiguration",
+            "globalaccelerator:CreateCrossAccountAttachment",
+            "cloud9:CreateEnvironmentMembership"
          ],
          "Resource": "*",
          "Condition": {