AWS Security ChangesHomeSearch

AWS cli medium security documentation change

Service: cli · 2025-08-19 · Security-related medium

File: cli/latest/reference/s3control/get-access-grants-location.md

Summary

Updated CLI version reference from 2.28.11 to 2.28.12 and added warning about URL encoding signed header values with spaces

Security assessment

Added warning about URL encoding headers with spaces addresses potential security issues related to signature validation failures or header injection attacks

Diff

diff --git a/cli/latest/reference/s3control/get-access-grants-location.md b/cli/latest/reference/s3control/get-access-grants-location.md
index c4f964e64..b0ea265fe 100644
--- a//cli/latest/reference/s3control/get-access-grants-location.md
+++ b//cli/latest/reference/s3control/get-access-grants-location.md
@@ -15 +15 @@
-  * [AWS CLI 2.28.11 Command Reference](../../index.html) »
+  * [AWS CLI 2.28.12 Command Reference](../../index.html) »
@@ -64,0 +65,4 @@ You must have the `s3:GetAccessGrantsLocation` permission to use this operation.
+### Warning
+
+You must URL encode any signed header values that contain spaces. For example, if your header value is `my file.txt` , containing two spaces after `my` , you must URL encode this value to `my%20%20file.txt` .
+
@@ -234 +238 @@ IAMRoleArn -> (string)
-  * [AWS CLI 2.28.11 Command Reference](../../index.html) »
+  * [AWS CLI 2.28.12 Command Reference](../../index.html) »