AWS Security ChangesHomeSearch

AWS cognito documentation change

Service: cognito · 2026-01-31 · Documentation low

File: cognito/latest/developerguide/cognito-user-pools-working-with-lambda-triggers.md

Summary

Added documentation for new Inbound Federation Lambda trigger

Security assessment

Documents new federation capability for attribute transformation during external authentication. While related to security workflows, no evidence indicates it addresses a specific vulnerability.

Diff

diff --git a/cognito/latest/developerguide/cognito-user-pools-working-with-lambda-triggers.md b/cognito/latest/developerguide/cognito-user-pools-working-with-lambda-triggers.md
index 6f44850ae..abde44e14 100644
--- a//cognito/latest/developerguide/cognito-user-pools-working-with-lambda-triggers.md
+++ b//cognito/latest/developerguide/cognito-user-pools-working-with-lambda-triggers.md
@@ -26,0 +27 @@ User Pool Flow | Operation | Description
+**Federation** | **[Inbound federation Lambda trigger](./user-pool-lambda-inbound-federation.html)** | Transforms federated user attributes before user creation or update in Amazon Cognito user pools  
@@ -57,0 +59,2 @@ User Pool Flow | Operation | Description
+  * [Inbound federation Lambda trigger](./user-pool-lambda-inbound-federation.html)
+
@@ -480,0 +484,4 @@ Verify auth challenge | `VerifyAuthChallengeResponse_Authentication` | Verify Au
+Federation triggers Trigger | triggerSource value | Event  
+---|---|---  
+Inbound federation | `InboundFederation_ExternalProvider` | Inbound federation.  
+