AWS Security ChangesHomeSearch

AWS AmazonS3 documentation change

Service: AmazonS3 · 2025-10-10 · Documentation low

File: AmazonS3/latest/userguide/using-presigned-url.md

Summary

Fixed incomplete sentence about presigned URL validity (removed accidental truncation of opening phrase)

Security assessment

Formatting correction to existing security documentation. No new security content added or vulnerabilities addressed - maintains existing guidance about credential rotation impacts.

Diff

diff --git a/AmazonS3/latest/userguide/using-presigned-url.md b/AmazonS3/latest/userguide/using-presigned-url.md
index f573e56ec..d5c6b1818 100644
--- a//AmazonS3/latest/userguide/using-presigned-url.md
+++ b//AmazonS3/latest/userguide/using-presigned-url.md
@@ -144 +144 @@ The following IAM policy statement requires the principal to access AWS only fro
-Presigned URLs remain valid only while their underlying credentials are valid. A presigned URL expires at either its configured expiration time or when its associated credentials expire, whichever occurs first. For Amazon Elastic Container Service tasks or containers, role credentials typically rotate every 1-6 hours. When using AWS Security Token Service (AWS STS) AssumeRole, the presigned URL expires when the role session ends, which by default is 1 hour. For Amazon EC2 instance profiles, metadata credentials rotate periodically with a maximum validity period of approximately 6 hours.
+remain valid only while their underlying credentials are valid. A presigned URL expires at either its configured expiration time or when its associated credentials expire, whichever occurs first. For Amazon Elastic Container Service tasks or containers, role credentials typically rotate every 1-6 hours. When using AWS Security Token Service (AWS STS) AssumeRole, the presigned URL expires when the role session ends, which by default is 1 hour. For Amazon EC2 instance profiles, metadata credentials rotate periodically with a maximum validity period of approximately 6 hours.