AWS Security ChangesHomeSearch

AWS solutions medium security documentation change

Service: solutions · 2025-08-16 · Security-related medium

File: solutions/latest/distributed-load-testing-on-aws/launch-the-stack.md

Summary

Added subnet CIDR parameters and Auto-Update Container Image option with security implications

Security assessment

Introduces a security-related parameter ('Auto-Update Container Image') that controls whether security updates are applied. Explicitly warns that disabling updates means running without security patches.

Diff

diff --git a/solutions/latest/distributed-load-testing-on-aws/launch-the-stack.md b/solutions/latest/distributed-load-testing-on-aws/launch-the-stack.md
index b7fdc198d..fd848139d 100644
--- a//solutions/latest/distributed-load-testing-on-aws/launch-the-stack.md
+++ b//solutions/latest/distributed-load-testing-on-aws/launch-the-stack.md
@@ -52 +52,3 @@ Parameter | Default | Description
-**Provide valid CIDR block for the solution to create VPC** |  192.168.0.0/16 |  If you do not provide values for an existing VPC, the CIDR block for the solution-created Amazon VPC contains the IP address for AWS Fargate.  
+**Provide valid CIDR block for the solution to create VPC** |  192.168.0.0/16 |  You may leave this parameter blank if you are using existing VPC  
+**Provide valid CIDR block for subnet A for the solution to create VPC** |  192.168.0.0/20 |  CIDR block for subnet A of the AWS Fargate VPC  
+**Provide valid CIDR block for subnet B for the solution to create VPC** |  192.168.16.0/20 |  CIDR block for subnet B of the AWS Fargate VPC  
@@ -53,0 +56 @@ Parameter | Default | Description
+**Auto-Update Container Image** |  `Yes` |  Automatically use the most up to date and secure image up until the next minor release. Selecting `No` will pull the image as originally released, without any security updates.