AWS secretsmanager documentation change
Summary
Removed documentation about ReplicateSecretToRegions API's automatic re-encryption behavior during cross-region replication
Security assessment
The removed content described security-related encryption behavior (re-encrypting with regional KMS keys), but its deletion doesn't indicate a resolved vulnerability. This appears to be documentation cleanup rather than addressing a specific security issue. However, removing this information could reduce clarity about secure cross-region replication practices.
Diff
diff --git a/secretsmanager/latest/userguide/security-encryption.md b/secretsmanager/latest/userguide/security-encryption.md index 49dff8642..09a97f996 100644 --- a//secretsmanager/latest/userguide/security-encryption.md +++ b//secretsmanager/latest/userguide/security-encryption.md @@ -151,2 +150,0 @@ Secrets Manager calls the [Encrypt](https://docs.aws.amazon.com/kms/latest/APIRe - * [ReplicateSecretToRegions](https://docs.aws.amazon.com/secretsmanager/latest/apireference/API_ReplicateSecretToRegions.html) – Secrets Manager re-encrypts the data key during replication using the KMS key in the replica Region. -