AWS Security ChangesHomeSearch

AWS step-functions documentation change

Service: step-functions · 2025-10-22 · Documentation low

File: step-functions/latest/dg/security.md

Summary

Removed details about request signing using access keys and temporary security credentials from STS

Security assessment

The removed content explained authentication requirements but did not indicate a specific security vulnerability being addressed. This appears to be a documentation simplification rather than a response to a security incident.

Diff

diff --git a/step-functions/latest/dg/security.md b/step-functions/latest/dg/security.md
index 7e93b4f64..3afe3ba05 100644
--- a//step-functions/latest/dg/security.md
+++ b//step-functions/latest/dg/security.md
@@ -68,2 +67,0 @@ You use AWS published API calls to access through the network. Clients must supp
-Additionally, requests must be signed by using an access key ID and a secret access key that is associated with an IAM principal. Or you can use the [AWS Security Token Service](https://docs.aws.amazon.com/STS/latest/APIReference/welcome.html) (AWS STS) to generate temporary security credentials to sign requests.
-