AWS glue documentation change
Summary
Updated multiple custom string pattern regex definitions and added pattern #63
Security assessment
Regex pattern changes appear to standardize input validation rules but lack explicit security context. No mention of addressing vulnerabilities.
Diff
diff --git a/glue/latest/dg/aws-glue-api-common.md b/glue/latest/dg/aws-glue-api-common.md index fb854f148..ecd67202f 100644 --- a//glue/latest/dg/aws-glue-api-common.md +++ b//glue/latest/dg/aws-glue-api-common.md @@ -471 +471 @@ The API uses the following regular expressions to define what is valid content f - * Custom string pattern #51 – "`(^arn:aws(-(cn|us-gov|iso(-[bef])?))?:iam::\w{12}:root)`" + * Custom string pattern #51 – "`[0-9a-fA-F]{8}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{12}`" @@ -473 +473 @@ The API uses the following regular expressions to define what is valid content f - * Custom string pattern #52 – "`^arn:aws(-(cn|us-gov|iso(-[bef])?))?:iam::[0-9]{12}:role/.+`" + * Custom string pattern #52 – "`(^arn:aws(-(cn|us-gov|iso(-[bef])?))?:iam::\w{12}:root)`" @@ -475 +475 @@ The API uses the following regular expressions to define what is valid content f - * Custom string pattern #53 – "`[\s\S]*`" + * Custom string pattern #53 – "`^arn:aws(-(cn|us-gov|iso(-[bef])?))?:iam::[0-9]{12}:role/.+`" @@ -477 +477 @@ The API uses the following regular expressions to define what is valid content f - * Custom string pattern #54 – "`([\u0020-\uD7FF\uE000-\uFFFD\uD800\uDC00-\uDBFF\uDFFF]|[^\S\r\n"'= ;])*`" + * Custom string pattern #54 – "`[\s\S]*`" @@ -479 +479 @@ The API uses the following regular expressions to define what is valid content f - * Custom string pattern #55 – "`^[A-Z\_]+$`" + * Custom string pattern #55 – "`([\u0020-\uD7FF\uE000-\uFFFD\uD800\uDC00-\uDBFF\uDFFF]|[^\S\r\n"'= ;])*`" @@ -481 +481 @@ The API uses the following regular expressions to define what is valid content f - * Custom string pattern #56 – "`^[A-Za-z0-9]+$`" + * Custom string pattern #56 – "`^[A-Z\_]+$`" @@ -483 +483 @@ The API uses the following regular expressions to define what is valid content f - * Custom string pattern #57 – "`[*A-Za-z0-9_-]*`" + * Custom string pattern #57 – "`^[A-Za-z0-9]+$`" @@ -485 +485 @@ The API uses the following regular expressions to define what is valid content f - * Custom string pattern #58 – "`([\u0020-\u007E\r\s\n])*`" + * Custom string pattern #58 – "`[*A-Za-z0-9_-]*`" @@ -487 +487 @@ The API uses the following regular expressions to define what is valid content f - * Custom string pattern #59 – "`[A-Za-z0-9_-]*`" + * Custom string pattern #59 – "`([\u0020-\u007E\r\s\n])*`" @@ -489 +489 @@ The API uses the following regular expressions to define what is valid content f - * Custom string pattern #60 – "`([\u0009\u000B\u000C\u0020-\uD7FF\uE000-\uFFFD\uD800\uDC00-\uDBFF\uDFFF])*`" + * Custom string pattern #60 – "`[A-Za-z0-9_-]*`" @@ -491 +491 @@ The API uses the following regular expressions to define what is valid content f - * Custom string pattern #61 – "`([\u0020-\uD7FF\uE000-\uFFFD\uD800\uDC00-\uDBFF\uDFFF\s])*`" + * Custom string pattern #61 – "`([\u0009\u000B\u000C\u0020-\uD7FF\uE000-\uFFFD\uD800\uDC00-\uDBFF\uDFFF])*`" @@ -493 +493,3 @@ The API uses the following regular expressions to define what is valid content f - * Custom string pattern #62 – "`([^\r\n])*`" + * Custom string pattern #62 – "`([\u0020-\uD7FF\uE000-\uFFFD\uD800\uDC00-\uDBFF\uDFFF\s])*`" + + * Custom string pattern #63 – "`([^\r\n])*`"