AWS Security ChangesHomeSearch

AWS cli documentation change

Service: cli · 2025-08-22 · Documentation low

File: cli/latest/reference/cognito-idp/admin-reset-user-password.md

Summary

Clarified password reset behavior to specify account status change and reset process flow

Security assessment

Enhanced documentation explains the security process of setting RESET_REQUIRED status and requiring code confirmation. This improves transparency about security controls but doesn't address a specific vulnerability.

Diff

diff --git a/cli/latest/reference/cognito-idp/admin-reset-user-password.md b/cli/latest/reference/cognito-idp/admin-reset-user-password.md
index de7e4325b..f8103f562 100644
--- a//cli/latest/reference/cognito-idp/admin-reset-user-password.md
+++ b//cli/latest/reference/cognito-idp/admin-reset-user-password.md
@@ -15 +15 @@
-  * [AWS CLI 2.28.12 Command Reference](../../index.html) »
+  * [AWS CLI 2.28.15 Command Reference](../../index.html) »
@@ -60 +60 @@ First time using the AWS CLI? See the [User Guide](https://docs.aws.amazon.com/c
-Resets the specified user’s password in a user pool. This operation doesn’t change the user’s password, but sends a password-reset code.
+Begins the password reset process. Sets the requested user’s account into a `RESET_REQUIRED` status, and sends them a password-reset code. Your user pool also sends the user a notification with a reset code and the information that their password has been reset. At sign-in, your application or the managed login session receives a challenge to complete the reset by confirming the code and setting a new password.
@@ -286 +286 @@ None
-  * [AWS CLI 2.28.12 Command Reference](../../index.html) »
+  * [AWS CLI 2.28.15 Command Reference](../../index.html) »