AWS Security ChangesHomeSearch

AWS cognito medium security documentation change

Service: cognito · 2025-07-04 · Security-related medium

File: cognito/latest/developerguide/amazon-cognito-user-pools-using-tokens-verifying-a-jwt.md

Summary

Fixed syntax error in clientId value (added missing closing quote)

Security assessment

Corrects a code example that could lead to token validation failures if copied directly, potentially allowing invalid tokens to be accepted

Diff

diff --git a/cognito/latest/developerguide/amazon-cognito-user-pools-using-tokens-verifying-a-jwt.md b/cognito/latest/developerguide/amazon-cognito-user-pools-using-tokens-verifying-a-jwt.md
index 3e463997c..70af97796 100644
--- a//cognito/latest/developerguide/amazon-cognito-user-pools-using-tokens-verifying-a-jwt.md
+++ b//cognito/latest/developerguide/amazon-cognito-user-pools-using-tokens-verifying-a-jwt.md
@@ -107 +107 @@ The following example application verifies user pool tokens with `aws-jwt-verify
-          clientId: '1example23456789, // Optional, only if you need to verify the token audience
+          clientId: '1example23456789', // Optional, only if you need to verify the token audience