AWS Security ChangesHomeSearch

AWS eventbridge documentation change

Service: eventbridge · 2025-09-19 · Documentation low

File: eventbridge/latest/userguide/eb-encryption-event-bus-dlq.md

Summary

Clarified that encryption/decryption errors during target processing (including input transformations) trigger DLQ

Security assessment

The change provides additional specificity about error handling scenarios but does not introduce new security features or address identified vulnerabilities

Diff

diff --git a/eventbridge/latest/userguide/eb-encryption-event-bus-dlq.md b/eventbridge/latest/userguide/eb-encryption-event-bus-dlq.md
index de22a7b16..ff7b39ee8 100644
--- a//eventbridge/latest/userguide/eb-encryption-event-bus-dlq.md
+++ b//eventbridge/latest/userguide/eb-encryption-event-bus-dlq.md
@@ -11 +11 @@ If you configure customer managed key encryption on an event bus, we recommend t
-  * If a non-retriable encryption or decryption error occurs while EventBridge is attempting to send the event to a target, the event is sent to the DLQ for the _target_ , if one is specified.
+  * If a non-retriable encryption or decryption error occurs while EventBridge is attempting to send the event to a target, including input transformations and target-specific settings, the event is sent to the DLQ for the _target_ , if one is specified.