AWS Security ChangesHomeSearch

AWS AWSCloudFormation medium security documentation change

Service: AWSCloudFormation · 2025-11-25 · Security-related medium

File: AWSCloudFormation/latest/TemplateReference/aws-properties-glue-securityconfiguration-s3encryption.md

Summary

Updated KMS key ARN pattern validation to require strict 'arn:aws:kms:' format

Security assessment

Enforces valid S3 encryption settings, preventing insecure storage of data in S3 buckets.

Diff

diff --git a/AWSCloudFormation/latest/TemplateReference/aws-properties-glue-securityconfiguration-s3encryption.md b/AWSCloudFormation/latest/TemplateReference/aws-properties-glue-securityconfiguration-s3encryption.md
index d3109585c..df184f8a5 100644
--- a//AWSCloudFormation/latest/TemplateReference/aws-properties-glue-securityconfiguration-s3encryption.md
+++ b//AWSCloudFormation/latest/TemplateReference/aws-properties-glue-securityconfiguration-s3encryption.md
@@ -42 +42 @@ _Required_ : No
- _Pattern_ : `^$|arn:aws[a-z0-9-]*:kms:.*`
+ _Pattern_ : `arn:aws:kms:.*`