AWS Security ChangesHomeSearch

AWS cli documentation change

Service: cli · 2025-10-13 · Documentation medium

File: cli/latest/reference/lambda/update-code-signing-config.md

Summary

Updated code signing policy documentation with CloudWatch metric and CloudTrail integration

Security assessment

Enhances documentation of security monitoring features but does not address a specific security vulnerability.

Diff

diff --git a/cli/latest/reference/lambda/update-code-signing-config.md b/cli/latest/reference/lambda/update-code-signing-config.md
index e7919f30c..873874657 100644
--- a//cli/latest/reference/lambda/update-code-signing-config.md
+++ b//cli/latest/reference/lambda/update-code-signing-config.md
@@ -15 +15 @@
-  * [AWS CLI 2.31.10 Command Reference](../../index.html) »
+  * [AWS CLI 2.31.13 Command Reference](../../index.html) »
@@ -161 +161 @@ JSON Syntax:
->> Code signing configuration policy for deployment validation failure. If you set the policy to `Enforce` , Lambda blocks the deployment request if signature validation checks fail. If you set the policy to `Warn` , Lambda allows the deployment and creates a CloudWatch log.
+>> Code signing configuration policy for deployment validation failure. If you set the policy to `Enforce` , Lambda blocks the deployment request if signature validation checks fail. If you set the policy to `Warn` , Lambda allows the deployment and issues a new Amazon CloudWatch metric (`SignatureValidationErrors` ) and also stores the warning in the CloudTrail log.
@@ -351 +351 @@ CodeSigningConfig -> (structure)
->>> Code signing configuration policy for deployment validation failure. If you set the policy to `Enforce` , Lambda blocks the deployment request if signature validation checks fail. If you set the policy to `Warn` , Lambda allows the deployment and creates a CloudWatch log.
+>>> Code signing configuration policy for deployment validation failure. If you set the policy to `Enforce` , Lambda blocks the deployment request if signature validation checks fail. If you set the policy to `Warn` , Lambda allows the deployment and issues a new Amazon CloudWatch metric (`SignatureValidationErrors` ) and also stores the warning in the CloudTrail log.
@@ -376 +376 @@ CodeSigningConfig -> (structure)
-  * [AWS CLI 2.31.10 Command Reference](../../index.html) »
+  * [AWS CLI 2.31.13 Command Reference](../../index.html) »