AWS Security ChangesHomeSearch

AWS cli documentation change

Service: cli · 2025-07-01 · Documentation medium

File: cli/latest/reference/iam/reset-service-specific-credential.md

Summary

Added documentation for Bedrock API key expiration date, credential alias, and secret fields

Security assessment

Introduces documentation about credential expiration and secret management for Bedrock API keys, which are security-related features. However, there's no indication this addresses a specific security vulnerability.

Diff

diff --git a/cli/latest/reference/iam/reset-service-specific-credential.md b/cli/latest/reference/iam/reset-service-specific-credential.md
index 75dd95ba3..6ee3c73e1 100644
--- a//cli/latest/reference/iam/reset-service-specific-credential.md
+++ b//cli/latest/reference/iam/reset-service-specific-credential.md
@@ -15 +15 @@
-  * [AWS CLI 2.27.45 Command Reference](../../index.html) »
+  * [AWS CLI 2.27.46 Command Reference](../../index.html) »
@@ -277,0 +278,4 @@ ServiceSpecificCredential -> (structure)
+> ExpirationDate -> (timestamp)
+>
+>> The date and time when the service specific credential expires. This field is only present for Bedrock API keys that were created with an expiration period.
+> 
@@ -289,0 +294,8 @@ ServiceSpecificCredential -> (structure)
+> ServiceCredentialAlias -> (string)
+>
+>> For Bedrock API keys, this is the public portion of the credential that includes the IAM user name and a suffix containing version and creation information.
+> 
+> ServiceCredentialSecret -> (string)
+>
+>> For Bedrock API keys, this is the secret portion of the credential that should be used to authenticate API calls. This value is returned only when the credential is created.
+> 
@@ -312 +324 @@ ServiceSpecificCredential -> (structure)
-  * [AWS CLI 2.27.45 Command Reference](../../index.html) »
+  * [AWS CLI 2.27.46 Command Reference](../../index.html) »