AWS Security ChangesHomeSearch

AWS apigateway documentation change

Service: apigateway · 2025-04-18 · Documentation low

File: apigateway/latest/developerguide/api-gateway-known-issues.md

Summary

Added documentation about OpenAPI 3.0 schema composition limitations with $ref

Security assessment

Change documents a technical limitation in OpenAPI 3.0 schema handling. No security vulnerabilities or security features are mentioned.

Diff

diff --git a/apigateway/latest/developerguide/api-gateway-known-issues.md b/apigateway/latest/developerguide/api-gateway-known-issues.md
index dac5a06b6..95d750de2 100644
--- a//apigateway/latest/developerguide/api-gateway-known-issues.md
+++ b//apigateway/latest/developerguide/api-gateway-known-issues.md
@@ -107,0 +108,2 @@ The following section details notes that might impact your use of API Gateway.
+    * For OpenAPI 3.0, you can't have a `oneOf`, `anyOf`, or `allOf` that uses `$ref` to a definition within the same schema. You can either directly input your schema or define a separate API Gateway model resource. For more information, see [Creating more complex models](./models-mappings-models.html#api-gateway-request-validation-model-more-complex).
+