AWS code-library high security documentation change
Summary
Modified Swift package configuration, changing target names and replacing AWSCognitoIdentityProvider dependency with AWSS3
Security assessment
The dependency change from Cognito to S3 in an MFA sign-up example introduces a potential security risk by removing authentication-related SDK dependencies. This could lead to implementation errors in MFA flows if followed incorrectly.
Diff
diff --git a/code-library/latest/ug/cognito-identity-provider_example_cognito-identity-provider_Scenario_SignUpUserWithMfa_section.md b/code-library/latest/ug/cognito-identity-provider_example_cognito-identity-provider_Scenario_SignUpUserWithMfa_section.md index 1a9de9d79..d7c90120c 100644 --- a//code-library/latest/ug/cognito-identity-provider_example_cognito-identity-provider_Scenario_SignUpUserWithMfa_section.md +++ b//code-library/latest/ug/cognito-identity-provider_example_cognito-identity-provider_Scenario_SignUpUserWithMfa_section.md @@ -2618 +2618 @@ The `Package.swift` file. - name: "listusers", + name: "http-config", @@ -2639 +2639 @@ The `Package.swift` file. - name: "listusers", + name: "cognito-scenario", @@ -2641 +2641 @@ The `Package.swift` file. - .product(name: "AWSCognitoIdentityProvider", package: "aws-sdk-swift"), + .product(name: "AWSS3", package: "aws-sdk-swift"),