AWS Security ChangesHomeSearch

AWS AWSCloudFormation documentation change

Service: AWSCloudFormation · 2025-10-16 · Documentation low

File: AWSCloudFormation/latest/TemplateReference/aws-resource-lambda-permission.md

Summary

Clarified wording for FunctionUrlAuthType property to specify restriction to function URL calls

Security assessment

The change rephrases existing security documentation about restricting invocation methods but does not introduce new security features or address vulnerabilities.

Diff

diff --git a/AWSCloudFormation/latest/TemplateReference/aws-resource-lambda-permission.md b/AWSCloudFormation/latest/TemplateReference/aws-resource-lambda-permission.md
index 1aab8e65e..2b4e70dc7 100644
--- a//AWSCloudFormation/latest/TemplateReference/aws-resource-lambda-permission.md
+++ b//AWSCloudFormation/latest/TemplateReference/aws-resource-lambda-permission.md
@@ -138 +138 @@ _Required_ : No
-Restricts the `lambda:InvokeFunction` action to calls coming from a function URL. When set to `true`, this prevents the principal from invoking the function by any means other than the function URL. For more information, see [Control access to Lambda function URLs](https://docs.aws.amazon.com/lambda/latest/dg/urls-auth.html).
+Restricts the `lambda:InvokeFunction` action to function URL calls. When set to `true`, this prevents the principal from invoking the function by any means other than the function URL. For more information, see [Control access to Lambda function URLs](https://docs.aws.amazon.com/lambda/latest/dg/urls-auth.html).