I am curious as to why the "cognito-idp:UpdateGroup" is not included in the AdministratorAccess-Amplify policy. Upon inspection of the afore mentioned policy I see that "cognito-idp:CreateGroup" and "cognito-idp:DeleteGroup" are included. I am mostly trying to ascertain if there is a security or data risk associated with updating a cognito group via the Amplify CLI that is not apparent the average user. Any information is greatly appreciated.
