AWS Security ChangesHomeSearch

AWS cognito documentation change

Service: cognito · 2025-03-26 · Documentation low

File: cognito/latest/developerguide/feature-plans-features-plus.md

Summary

Fixed typo in 'commmonly' to 'commonly' in compromised-credentials detection description

Security assessment

Minor typo correction in existing security feature documentation

Diff

diff --git a/cognito/latest/developerguide/feature-plans-features-plus.md b/cognito/latest/developerguide/feature-plans-features-plus.md
index 0187f7a59..6ef9e961b 100644
--- a/cognito/latest/developerguide/feature-plans-features-plus.md
+++ b/cognito/latest/developerguide/feature-plans-features-plus.md
@@ -65 +65 @@ The Plus plan includes an _adaptive authentication_ feature. When you activate t
-The Plus plan includes a _compromised-credentials detection_ feature. This feature guards against the use of insecure passwords and the threat of unintended application access that this practice creates. When you permit your users to sign in with username and password, they might reuse a password that they've used elsewhere. That password might have been leaked, or just be commmonly guessed. With compromised-credentials detection, your user pool reads the passwords your users submit and compares them to password databases. If the operation results in a decision that the password is likely compromised, you can configure your user pool to block sign-in and then initiate a password reset for the user in your application.
+The Plus plan includes a _compromised-credentials detection_ feature. This feature guards against the use of insecure passwords and the threat of unintended application access that this practice creates. When you permit your users to sign in with username and password, they might reuse a password that they've used elsewhere. That password might have been leaked, or just be commonly guessed. With compromised-credentials detection, your user pool reads the passwords your users submit and compares them to password databases. If the operation results in a decision that the password is likely compromised, you can configure your user pool to block sign-in and then initiate a password reset for the user in your application.