AWS Security ChangesHomeSearch

AWS AWSCloudFormation medium security documentation change

Service: AWSCloudFormation · 2025-11-25 · Security-related medium

File: AWSCloudFormation/latest/TemplateReference/aws-properties-glue-connection-authenticationconfigurationinput.md

Summary

Updated KMS key ARN pattern validation to require strict 'arn:aws:kms:' format

Security assessment

Enforces valid KMS ARNs for encryption, preventing misconfigurations that could lead to insecure data storage. This directly addresses encryption security controls.

Diff

diff --git a/AWSCloudFormation/latest/TemplateReference/aws-properties-glue-connection-authenticationconfigurationinput.md b/AWSCloudFormation/latest/TemplateReference/aws-properties-glue-connection-authenticationconfigurationinput.md
index 5ecc838a9..26b4faa8e 100644
--- a//AWSCloudFormation/latest/TemplateReference/aws-properties-glue-connection-authenticationconfigurationinput.md
+++ b//AWSCloudFormation/latest/TemplateReference/aws-properties-glue-connection-authenticationconfigurationinput.md
@@ -87 +87 @@ _Required_ : No
- _Pattern_ : `^$|arn:aws[a-z0-9-]*:kms:.*`
+ _Pattern_ : `arn:aws:kms:.*`