AWS Security ChangesHomeSearch

AWS cli documentation change

Service: cli · 2025-08-19 · Documentation medium

File: cli/latest/reference/s3control/get-bucket-policy.md

Summary

Updated CLI version reference from 2.28.11 to 2.28.12 and added a warning about URL encoding signed header values containing spaces

Security assessment

The added warning addresses proper input sanitization for security-sensitive operations. While no specific vulnerability is mentioned, it mitigates risks of header injection or parsing flaws.

Diff

diff --git a/cli/latest/reference/s3control/get-bucket-policy.md b/cli/latest/reference/s3control/get-bucket-policy.md
index 3213a4b30..6d3670041 100644
--- a//cli/latest/reference/s3control/get-bucket-policy.md
+++ b//cli/latest/reference/s3control/get-bucket-policy.md
@@ -15 +15 @@
-  * [AWS CLI 2.28.11 Command Reference](../../index.html) »
+  * [AWS CLI 2.28.12 Command Reference](../../index.html) »
@@ -84,0 +85,4 @@ The following actions are related to `GetBucketPolicy` :
+### Warning
+
+You must URL encode any signed header values that contain spaces. For example, if your header value is `my file.txt` , containing two spaces after `my` , you must URL encode this value to `my%20%20file.txt` .
+
@@ -242 +246 @@ Policy -> (string)
-  * [AWS CLI 2.28.11 Command Reference](../../index.html) »
+  * [AWS CLI 2.28.12 Command Reference](../../index.html) »