AWS Security ChangesHomeSearch

AWS cli medium security documentation change

Service: cli · 2025-08-19 · Security-related medium

File: cli/latest/reference/s3control/delete-bucket-tagging.md

Summary

Updated CLI version reference from 2.28.11 to 2.28.12 and added warning about URL encoding signed header values with spaces

Security assessment

Warning addition mitigates risks of header injection attacks by enforcing URL encoding, which is critical for maintaining signature validation integrity in security-sensitive operations.

Diff

diff --git a/cli/latest/reference/s3control/delete-bucket-tagging.md b/cli/latest/reference/s3control/delete-bucket-tagging.md
index e7675c53e..c07304364 100644
--- a//cli/latest/reference/s3control/delete-bucket-tagging.md
+++ b//cli/latest/reference/s3control/delete-bucket-tagging.md
@@ -15 +15 @@
-  * [AWS CLI 2.28.11 Command Reference](../../index.html) »
+  * [AWS CLI 2.28.12 Command Reference](../../index.html) »
@@ -75,0 +76,4 @@ The following actions are related to `DeleteBucketTagging` :
+### Warning
+
+You must URL encode any signed header values that contain spaces. For example, if your header value is `my file.txt` , containing two spaces after `my` , you must URL encode this value to `my%20%20file.txt` .
+
@@ -231 +235 @@ None
-  * [AWS CLI 2.28.11 Command Reference](../../index.html) »
+  * [AWS CLI 2.28.12 Command Reference](../../index.html) »