AWS pcs high security documentation change
Summary
Updated agent version from 1.2.2 to 1.3.0 and changed GPG signature verification details including new signing key fingerprint.
Security assessment
Agent version update with changed cryptographic signatures indicates potential security fixes or key rotation. The new fingerprint (B7E1...ECC0AE5C) replaces the old one, suggesting proactive security maintenance to ensure package integrity.
Diff
diff --git a/pcs/latest/userguide/working-with_ami_custom_install-agent.md b/pcs/latest/userguide/working-with_ami_custom_install-agent.md index 8ea458340..4244db36a 100644 --- a//pcs/latest/userguide/working-with_ami_custom_install-agent.md +++ b//pcs/latest/userguide/working-with_ami_custom_install-agent.md @@ -27 +27 @@ Install the agent that configures the instances launched by AWS PCS for use with - curl https://aws-pcs-repo-region.s3.region.amazonaws.com/aws-pcs-agent/aws-pcs-agent-v1.2.2-1.tar.gz -o aws-pcs-agent-v1.2.2-1.tar.gz + curl https://aws-pcs-repo-region.s3.region.amazonaws.com/aws-pcs-agent/aws-pcs-agent-v1.3.0-1.tar.gz -o aws-pcs-agent-v1.3.0-1.tar.gz @@ -56,2 +56,2 @@ Don't run the AWS PCS agent installation script if the fingerprint doesn't match - wget https://aws-pcs-repo-region.s3.region.amazonaws.com/aws-pcs-agent/aws-pcs-agent-v1.2.2-1.tar.gz.sig && \ - gpg --verify ./aws-pcs-agent-v1.2.2-1.tar.gz.sig + wget https://aws-pcs-repo-region.s3.region.amazonaws.com/aws-pcs-agent/aws-pcs-agent-v1.3.0-1.tar.gz.sig && \ + gpg --verify ./aws-pcs-agent-v1.3.0-1.tar.gz.sig @@ -61,4 +61,3 @@ The output should be similar to the following: - gpg: assuming signed data in './aws-pcs-agent-v1.2.2-1.tar.gz' - gpg: Signature made Wed Oct 16 18:50:19 2025 CEST - gpg: using RSA key 4BAA531875430EB0739E6D961BA7F0AF6E34C496 - gpg: Good signature from "AWS PCS Packages (AWS PCS Packages)" [unknown] + gpg: assuming signed data in './aws-pcs-agent-v1.3.0-1.tar.gz' + gpg: Signature made Fri 24 Oct 2025 05:03:58 PM UTC using RSA key ID ECC0AE5C + gpg: Good signature from "AWS PCS Packages (AWS PCS Packages)" @@ -68 +67 @@ The output should be similar to the following: - Subkey fingerprint: 4BAA 5318 7543 0EB0 739E 6D96 1BA7 F0AF 6E34 C496 + Subkey fingerprint: B7E1 8788 3517 6A74 C3D5 EAF5 6088 136D ECC0 AE5C @@ -78 +77 @@ Don't run the AWS PCS software installation script if the fingerprint doesn't ma - tar -xf aws-pcs-agent-v1.2.2-1.tar.gz && \ + tar -xf aws-pcs-agent-v1.3.0-1.tar.gz && \ @@ -92 +91 @@ The output should be similar to the following: - AGENT_VERSION='1.2.2' + AGENT_VERSION='1.3.0'