AWS AWSCloudFormation documentation change
Summary
Reworded visibility documentation to explicitly state PRIVATE/PUBLIC scopes and default behavior
Security assessment
Clarifies access control mechanisms for Hooks by explaining visibility settings. While not fixing a specific vulnerability, it documents security-relevant features (resource visibility controls).
Diff
diff --git a/AWSCloudFormation/latest/UserGuide/aws-resource-cloudformation-hookversion.md b/AWSCloudFormation/latest/UserGuide/aws-resource-cloudformation-hookversion.md index f40eb6034..92513dba1 100644 --- a//AWSCloudFormation/latest/UserGuide/aws-resource-cloudformation-hookversion.md +++ b//AWSCloudFormation/latest/UserGuide/aws-resource-cloudformation-hookversion.md @@ -165 +165 @@ The ID of this version of the Hook. -The scope at which the Hook is visible and usable in CloudFormation operations. +The visibility level that determines who can see and use this Hook in CloudFormation operations: @@ -167 +167 @@ The scope at which the Hook is visible and usable in CloudFormation operations. -Valid values include: + * `PRIVATE`: The Hook is only visible and usable within the account where it was registered. CloudFormation automatically marks any Hooks you register as `PRIVATE`. @@ -169,3 +169 @@ Valid values include: - * `PRIVATE`: The extension (Hook) is only visible and usable within the account in which it's registered. CloudFormation marks any resources you register as `PRIVATE`. - - * `PUBLIC`: The extension (Hook) is publicly visible and usable within any AWS account. + * `PUBLIC`: The Hook is publicly visible and usable within any AWS account.