Generate least-privilege IAM permissions boundaries based on actual AWS activity for enhanced security.