AWS Security ChangesHomeSearch

AWS cli low security documentation change

Service: cli · 2025-07-18 · Security-related low

File: cli/latest/reference/stepfunctions/list-executions.md

Summary

Added validation rules for PENDING_REDRIVE statusFilter and expanded character restrictions

Security assessment

New input validation rules prevent invalid API usage patterns and restrict potentially dangerous characters (surrogates/invalid Unicode), reducing injection attack risks

Diff

diff --git a/cli/latest/reference/stepfunctions/list-executions.md b/cli/latest/reference/stepfunctions/list-executions.md
index c32f759a3..109bb6ee4 100644
--- a//cli/latest/reference/stepfunctions/list-executions.md
+++ b//cli/latest/reference/stepfunctions/list-executions.md
@@ -15 +15 @@
-  * [AWS CLI 2.27.51 Command Reference](../../index.html) »
+  * [AWS CLI 2.27.54 Command Reference](../../index.html) »
@@ -123,0 +124,4 @@ See also: [AWS API Documentation](https://docs.aws.amazon.com/goto/WebAPI/states
+> If you provide a `PENDING_REDRIVE` statusFilter, you must specify `mapRunArn` . For more information, see [Child workflow execution redrive behaviour](https://docs.aws.amazon.com/step-functions/latest/dg/redrive-map-run.html#redrive-child-workflow-behavior) in the _Step Functions Developer Guide_ .
+> 
+> If you provide a stateMachineArn and a `PENDING_REDRIVE` statusFilter, the API returns a validation exception.
+> 
@@ -301 +305,3 @@ executions -> (list)
->>>   * control characters (`U+0000-001F` , `U+007F-009F` )
+>>>   * control characters (`U+0000-001F` , `U+007F-009F` , `U+FFFE-FFFF` )
+>>>   * surrogates (`U+D800-DFFF` )
+>>>   * invalid characters (`U+10FFFF` )
@@ -363 +369 @@ nextToken -> (string)
-  * [AWS CLI 2.27.51 Command Reference](../../index.html) »
+  * [AWS CLI 2.27.54 Command Reference](../../index.html) »