AWS Security ChangesHomeSearch

AWS cli medium security documentation change

Service: cli · 2025-08-19 · Security-related medium

File: cli/latest/reference/s3control/put-access-point-policy-for-object-lambda.md

Summary

Updated CLI version reference, added warning about URL encoding headers with spaces

Security assessment

URL encoding requirement mitigates risks of policy misconfiguration due to unencoded spaces in headers, which could lead to unintended access permissions.

Diff

diff --git a/cli/latest/reference/s3control/put-access-point-policy-for-object-lambda.md b/cli/latest/reference/s3control/put-access-point-policy-for-object-lambda.md
index 621a70cd6..ad44a9684 100644
--- a//cli/latest/reference/s3control/put-access-point-policy-for-object-lambda.md
+++ b//cli/latest/reference/s3control/put-access-point-policy-for-object-lambda.md
@@ -15 +15 @@
-  * [AWS CLI 2.28.11 Command Reference](../../index.html) »
+  * [AWS CLI 2.28.12 Command Reference](../../index.html) »
@@ -71,0 +72,4 @@ The following actions are related to `PutAccessPointPolicyForObjectLambda` :
+### Warning
+
+You must URL encode any signed header values that contain spaces. For example, if your header value is `my file.txt` , containing two spaces after `my` , you must URL encode this value to `my%20%20file.txt` .
+
@@ -228 +232 @@ None
-  * [AWS CLI 2.28.11 Command Reference](../../index.html) »
+  * [AWS CLI 2.28.12 Command Reference](../../index.html) »