AWS Security ChangesHomeSearch

AWS secretsmanager medium security documentation change

Service: secretsmanager · 2025-05-10 · Security-related medium

File: secretsmanager/latest/userguide/rotate-secrets_lambda-functions.md

Summary

Added warning about Lambda provisioned concurrency requirements for rotation functions

Security assessment

Addresses potential rotation failures due to insufficient concurrency, which could leave secrets unrotated and vulnerable. Proper rotation is critical for credential security.

Diff

diff --git a/secretsmanager/latest/userguide/rotate-secrets_lambda-functions.md b/secretsmanager/latest/userguide/rotate-secrets_lambda-functions.md
index 943d38116..b4ccf1b8e 100644
--- a//secretsmanager/latest/userguide/rotate-secrets_lambda-functions.md
+++ b//secretsmanager/latest/userguide/rotate-secrets_lambda-functions.md
@@ -31,0 +32,4 @@ For log statement examples, see the [AWS Secrets Manager rotation function templ
+###### Warning
+
+Setting the provisioned concurrency parameter to a value lower than 10 can cause throttling due to insufficient execution threads for the Lambda function. For more information, see [ Understanding reserved concurrency and provisioned concurrency](https://docs.aws.amazon.com/lambda/latest/dg/lambda-concurrency.html#reserved-and-provisioned) in the AWS Lambda AWS Lambda Developer Guide.
+