AWS CloudTrail policy-size evasion TL;DR: Whitespace-padded IAM policies plus undocumented requestParameters size cap hide attacker actions from CloudTrail. Stub — to be filled in. What it is TODO Preconditions / where it applies TODO Technique TODO Detection and defence TODO References https://permiso.io/blog/cloudtrail-logging-evasion-where-policy-size-matters