AWS Security ChangesHomeSearch

AWS cognito documentation change

Service: cognito · 2025-08-10 · Documentation low

File: cognito/latest/developerguide/user-pool-settings-mfa.md

Summary

Removed alt text from warning icons in MFA configuration documentation

Security assessment

The change only removes descriptive alt text for images and does not alter security-related content or MFA configuration guidance.

Diff

diff --git a/cognito/latest/developerguide/user-pool-settings-mfa.md b/cognito/latest/developerguide/user-pool-settings-mfa.md
index cd1bff115..ebaa06468 100644
--- a//cognito/latest/developerguide/user-pool-settings-mfa.md
+++ b//cognito/latest/developerguide/user-pool-settings-mfa.md
@@ -186 +186 @@ The following list corresponds to the numbering in the decision logic diagram an
-  6. If the user has only an email address or only a phone number, determine whether that attribute is also the method the user pool implements to send account-recovery messages for password reset. If true, they can't complete sign-in with MFA required and Amazon Cognito returns an error. To activate sign-in for this user, you must add a non-recovery attribute or register a TOTP authenticator for them.  ![Red square icon with white exclamation mark, indicating a warning or alert.](/images/cognito/latest/developerguide/images/error.png)
+  6. If the user has only an email address or only a phone number, determine whether that attribute is also the method the user pool implements to send account-recovery messages for password reset. If true, they can't complete sign-in with MFA required and Amazon Cognito returns an error. To activate sign-in for this user, you must add a non-recovery attribute or register a TOTP authenticator for them.  ![](/images/cognito/latest/developerguide/images/error.png)
@@ -194 +194 @@ The following list corresponds to the numbering in the decision logic diagram an
-    4. If they don't have an attribute that's eligible for an enabled email or SMS MFA factor, determine whether TOTP MFA is enabled. If TOTP MFA is disabled, they can't complete sign-in with MFA required and Amazon Cognito returns an error. To activate sign-in for this user, you must add a non-recovery attribute or register a TOTP authenticator for them.  ![Red square icon with white exclamation mark, indicating a warning or alert.](/images/cognito/latest/developerguide/images/error.png)
+    4. If they don't have an attribute that's eligible for an enabled email or SMS MFA factor, determine whether TOTP MFA is enabled. If TOTP MFA is disabled, they can't complete sign-in with MFA required and Amazon Cognito returns an error. To activate sign-in for this user, you must add a non-recovery attribute or register a TOTP authenticator for them.  ![](/images/cognito/latest/developerguide/images/error.png)