AWS Security ChangesHomeSearch

AWS cli medium security documentation change

Service: cli · 2025-08-19 · Security-related medium

File: cli/latest/reference/s3control/delete-bucket-policy.md

Summary

Updated CLI version reference from 2.28.11 to 2.28.12 and added warning about URL encoding signed header values with spaces

Security assessment

Added warning emphasizes proper URL encoding of signed headers to prevent potential signature validation failures or injection vulnerabilities. Improper encoding could lead to security issues in request authentication.

Diff

diff --git a/cli/latest/reference/s3control/delete-bucket-policy.md b/cli/latest/reference/s3control/delete-bucket-policy.md
index 6586ecbd6..c2968436c 100644
--- a//cli/latest/reference/s3control/delete-bucket-policy.md
+++ b//cli/latest/reference/s3control/delete-bucket-policy.md
@@ -15 +15 @@
-  * [AWS CLI 2.28.11 Command Reference](../../index.html) »
+  * [AWS CLI 2.28.12 Command Reference](../../index.html) »
@@ -81,0 +82,4 @@ The following actions are related to `DeleteBucketPolicy` :
+### Warning
+
+You must URL encode any signed header values that contain spaces. For example, if your header value is `my file.txt` , containing two spaces after `my` , you must URL encode this value to `my%20%20file.txt` .
+
@@ -237 +241 @@ None
-  * [AWS CLI 2.28.11 Command Reference](../../index.html) »
+  * [AWS CLI 2.28.12 Command Reference](../../index.html) »