AWS Security ChangesHomeSearch

AWS vpc-lattice documentation change

Service: vpc-lattice · 2025-12-10 · Documentation low

File: vpc-lattice/latest/ug/tls-listeners.md

Summary

Added documentation about Websocket connections using TLS listeners, including limitations on connection duration (10 minutes), auth policies (anonymous principals only), and Lambda target support

Security assessment

The change documents security-related limitations of Websocket implementations (authentication restrictions) but doesn't address any specific vulnerability or incident. The auth policy limitation indicates security constraints that should be considered during implementation.

Diff

diff --git a/vpc-lattice/latest/ug/tls-listeners.md b/vpc-lattice/latest/ug/tls-listeners.md
index 7803ebaa8..b462b1539 100644
--- a//vpc-lattice/latest/ug/tls-listeners.md
+++ b//vpc-lattice/latest/ug/tls-listeners.md
@@ -36,0 +37,8 @@ The following considerations apply to TLS listeners:
+  * Websocket connections can use TLS Listeners to connect to , VPC Lattice services. The following limitations exist:
+
+    * Connection duration is limited to 10 minutes
+
+    * Auth policies are limited to anonymous principals
+
+    * Lambda targets are not supported
+