AWS Security ChangesHomeSearch

AWS cli medium security documentation change

Service: cli · 2025-08-19 · Security-related medium

File: cli/latest/reference/s3control/delete-bucket-replication.md

Summary

Updated CLI version reference from 2.28.11 to 2.28.12 and added warning about URL encoding signed header values with spaces

Security assessment

New warning addresses potential security risks from malformed signed headers by requiring proper URL encoding, which could otherwise lead to authentication bypass or request manipulation.

Diff

diff --git a/cli/latest/reference/s3control/delete-bucket-replication.md b/cli/latest/reference/s3control/delete-bucket-replication.md
index 6794fec94..d6b6b5892 100644
--- a//cli/latest/reference/s3control/delete-bucket-replication.md
+++ b//cli/latest/reference/s3control/delete-bucket-replication.md
@@ -15 +15 @@
-  * [AWS CLI 2.28.11 Command Reference](../../index.html) »
+  * [AWS CLI 2.28.12 Command Reference](../../index.html) »
@@ -81,0 +82,4 @@ The following operations are related to `DeleteBucketReplication` :
+### Warning
+
+You must URL encode any signed header values that contain spaces. For example, if your header value is `my file.txt` , containing two spaces after `my` , you must URL encode this value to `my%20%20file.txt` .
+
@@ -237 +241 @@ None
-  * [AWS CLI 2.28.11 Command Reference](../../index.html) »
+  * [AWS CLI 2.28.12 Command Reference](../../index.html) »