AWS AWSCloudFormation documentation change
Summary
Replaced min/max length constraints with a pattern validation for KMS key identifiers.
Security assessment
Similar to the AppConfig ConfigurationProfile change, this enforces proper KMS key formats in documentation. It promotes correct security configurations but doesn't fix a known vulnerability.
Diff
diff --git a/AWSCloudFormation/latest/TemplateReference/aws-resource-appconfig-deployment.md b/AWSCloudFormation/latest/TemplateReference/aws-resource-appconfig-deployment.md index 11c4d4a48..b5b1d3c29 100644 --- a//AWSCloudFormation/latest/TemplateReference/aws-resource-appconfig-deployment.md +++ b//AWSCloudFormation/latest/TemplateReference/aws-resource-appconfig-deployment.md @@ -175,3 +175 @@ _Required_ : No - _Minimum_ : `1` - - _Maximum_ : `2048` + _Pattern_ : `^[\da-f]{8}-[\da-f]{4}-[\da-f]{4}-[\da-f]{4}-[\da-f]{12}|alias/[a-zA-Z0-9/_-]{1,250}|arn:aws[a-zA-Z-]*:kms:[a-z]{2}(-gov|-iso(b?))?-[a-z]+-\d{1}:\d{12}:(key/[0-9a-f-]{36}|alias/[a-zA-Z0-9/_-]{1,250})$`