AWS cli documentation change
Summary
Updated CLI version references from 2.28.12 to 2.28.15, clarified system rollback configuration descriptions, added ApplicationEncryptionConfigurationUpdate structure documentation, updated Apache Flink documentation links to 1.20 version, increased default maximum KPUs from 32 to 64, and added ApplicationEncryptionConfigurationDescription section.
Security assessment
The changes add documentation for encryption configuration updates (KeyIdUpdate/KeyTypeUpdate) which relate to security features for encryption at rest. However, there is no evidence this addresses a specific security vulnerability. The encryption documentation additions qualify as security feature documentation rather than vulnerability fixes.
Diff
diff --git a/cli/latest/reference/kinesisanalyticsv2/update-application.md b/cli/latest/reference/kinesisanalyticsv2/update-application.md index dfdd31dd1..f4870aa4b 100644 --- a//cli/latest/reference/kinesisanalyticsv2/update-application.md +++ b//cli/latest/reference/kinesisanalyticsv2/update-application.md @@ -15 +15 @@ - * [AWS CLI 2.28.12 Command Reference](../../index.html) » + * [AWS CLI 2.28.15 Command Reference](../../index.html) » @@ -529 +529 @@ See also: [AWS API Documentation](https://docs.aws.amazon.com/goto/WebAPI/kinesi ->> Describes system rollback configuration for a Managed Service for Apache Flink application +>> Describes whether system rollbacks are enabled for a Managed Service for Apache Flink application. @@ -533 +533 @@ See also: [AWS API Documentation](https://docs.aws.amazon.com/goto/WebAPI/kinesi ->>> Describes whether system rollbacks are enabled for a Managed Service for Apache Flink application +>>> Describes whether system rollbacks are enabled for a Managed Service for Apache Flink application. @@ -641,0 +642,12 @@ See also: [AWS API Documentation](https://docs.aws.amazon.com/goto/WebAPI/kinesi +> +> ApplicationEncryptionConfigurationUpdate -> (structure) +> +>> Represents an update for encryption at rest configuration. +>> +>> KeyIdUpdate -> (string) +>> +>>> The key ARN, key ID, alias ARN, or alias name of the KMS key to be used for encryption at rest. +>> +>> KeyTypeUpdate -> (string) +>> +>>> Specifies the type of key to be used for encryption at rest. @@ -831,0 +844,4 @@ JSON Syntax: + }, + "ApplicationEncryptionConfigurationUpdate": { + "KeyIdUpdate": "string", + "KeyTypeUpdate": "AWS_OWNED_KEY"|"CUSTOMER_MANAGED_KEY" @@ -850 +866 @@ JSON Syntax: ->>> When restoring from a snapshot, specifies whether the runtime is allowed to skip a state that cannot be mapped to the new program. This will happen if the program is updated between snapshots to remove stateful parameters, and state data in the snapshot no longer corresponds to valid application data. For more information, see [Allowing Non-Restored State](https://nightlies.apache.org/flink/flink-docs-release-1.19/docs/ops/state/savepoints/#allowing-non-restored-state) in the [Apache Flink documentation](https://nightlies.apache.org/flink/flink-docs-release-1.19/) . +>>> When restoring from a snapshot, specifies whether the runtime is allowed to skip a state that cannot be mapped to the new program. This will happen if the program is updated between snapshots to remove stateful parameters, and state data in the snapshot no longer corresponds to valid application data. For more information, see [Allowing Non-Restored State](https://nightlies.apache.org/flink/flink-docs-release-1.20/docs/ops/state/savepoints/#allowing-non-restored-state) in the [Apache Flink documentation](https://nightlies.apache.org/flink/flink-docs-release-1.20/) . @@ -1493 +1509 @@ ApplicationDetail -> (structure) ->>>>> When restoring from a snapshot, specifies whether the runtime is allowed to skip a state that cannot be mapped to the new program. This will happen if the program is updated between snapshots to remove stateful parameters, and state data in the snapshot no longer corresponds to valid application data. For more information, see [Allowing Non-Restored State](https://nightlies.apache.org/flink/flink-docs-release-1.19/docs/ops/state/savepoints/#allowing-non-restored-state) in the [Apache Flink documentation](https://nightlies.apache.org/flink/flink-docs-release-1.19/) . +>>>>> When restoring from a snapshot, specifies whether the runtime is allowed to skip a state that cannot be mapped to the new program. This will happen if the program is updated between snapshots to remove stateful parameters, and state data in the snapshot no longer corresponds to valid application data. For more information, see [Allowing Non-Restored State](https://nightlies.apache.org/flink/flink-docs-release-1.20/docs/ops/state/savepoints/#allowing-non-restored-state) in the [Apache Flink documentation](https://nightlies.apache.org/flink/flink-docs-release-1.20/) . @@ -1571 +1587 @@ ApplicationDetail -> (structure) ->>>>> Describes the initial number of parallel tasks that a Managed Service for Apache Flink application can perform. If `AutoScalingEnabled` is set to True, then Managed Service for Apache Flink can increase the `CurrentParallelism` value in response to application load. The service can increase `CurrentParallelism` up to the maximum parallelism, which is `ParalellismPerKPU` times the maximum KPUs for the application. The maximum KPUs for an application is 32 by default, and can be increased by requesting a limit increase. If application load is reduced, the service can reduce the `CurrentParallelism` value down to the `Parallelism` setting. +>>>>> Describes the initial number of parallel tasks that a Managed Service for Apache Flink application can perform. If `AutoScalingEnabled` is set to True, then Managed Service for Apache Flink can increase the `CurrentParallelism` value in response to application load. The service can increase `CurrentParallelism` up to the maximum parallelism, which is `ParalellismPerKPU` times the maximum KPUs for the application. The maximum KPUs for an application is 64 by default, and can be increased by requesting a limit increase. If application load is reduced, the service can reduce the `CurrentParallelism` value down to the `Parallelism` setting. @@ -1587 +1603 @@ ApplicationDetail -> (structure) ->>>> The job plan for an application. For more information about the job plan, see [Jobs and Scheduling](https://nightlies.apache.org/flink/flink-docs-release-1.19/internals/job_scheduling.html) in the [Apache Flink Documentation](https://nightlies.apache.org/flink/flink-docs-release-1.19/) . To retrieve the job plan for the application, use the DescribeApplicationRequest$IncludeAdditionalDetails parameter of the DescribeApplication operation. +>>>> The job plan for an application. For more information about the job plan, see [Jobs and Scheduling](https://nightlies.apache.org/flink/flink-docs-release-1.20/internals/job_scheduling.html) in the [Apache Flink Documentation](https://nightlies.apache.org/flink/flink-docs-release-1.20/) . To retrieve the job plan for the application, use the DescribeApplicationRequest$IncludeAdditionalDetails parameter of the DescribeApplication operation. @@ -1623 +1639 @@ ApplicationDetail -> (structure) ->>> Describes system rollback configuration for a Managed Service for Apache Flink application +>>> Describes whether system rollbacks are enabled for a Managed Service for Apache Flink application. @@ -1627 +1643 @@ ApplicationDetail -> (structure) ->>>> Describes whether system rollbacks are enabled for a Managed Service for Apache Flink application +>>>> Describes whether system rollbacks are enabled for a Managed Service for Apache Flink application. @@ -1739,0 +1756,12 @@ ApplicationDetail -> (structure) +>> +>> ApplicationEncryptionConfigurationDescription -> (structure) +>> +>>> Describes the encryption at rest configuration. +>>> +>>> KeyId -> (string) +>>> +>>>> The key ARN, key ID, alias ARN, or alias name of the KMS key used for encryption at rest. +>>> +>>> KeyType -> (string) +>>> +>>>> Specifies the type of key used for encryption at rest. @@ -1787 +1815 @@ ApplicationDetail -> (structure) ->> The current timestamp when the application version was created. +>> The timestamp that indicates when the application version was created. @@ -1803 +1831 @@ OperationId -> (string) -> Operation ID for tracking UpdateApplication request +> The operation ID that can be used to track the request. @@ -1815 +1843 @@ OperationId -> (string) - * [AWS CLI 2.28.12 Command Reference](../../index.html) » + * [AWS CLI 2.28.15 Command Reference](../../index.html) »