AWS cli documentation change
Summary
Added documentation for StorageEncryptionType field describing encryption types for DB instances
Security assessment
The change documents encryption types (none/sse-kms/sse-rds) for data-at-rest protection. While this adds security documentation, there's no evidence of a specific vulnerability being addressed.
Diff
diff --git a/cli/latest/reference/rds/describe-db-instances.md b/cli/latest/reference/rds/describe-db-instances.md index a06f432ee..d72a08518 100644 --- a//cli/latest/reference/rds/describe-db-instances.md +++ b//cli/latest/reference/rds/describe-db-instances.md @@ -15 +15 @@ - * [AWS CLI 2.33.22 Command Reference](../../index.html) » + * [AWS CLI 2.33.25 Command Reference](../../index.html) » @@ -912,0 +913,18 @@ DBInstances -> (list) +>> +>> StorageEncryptionType -> (string) +>> +>>> The type of encryption used to protect data at rest in the DB instance. Possible values: +>>> +>>> * `none` \- The DB instance is not encrypted. +>>> * `sse-rds` \- The DB instance is encrypted using an Amazon Web Services owned KMS key. +>>> * `sse-kms` \- The DB instance is encrypted using a customer managed KMS key or Amazon Web Services managed KMS key. +>>> + +>>> +>>> Possible values: +>>> +>>> * `none` +>>> * `sse-kms` +>>> * `sse-rds` +>>> + @@ -1424 +1442 @@ DBInstances -> (list) - * [AWS CLI 2.33.22 Command Reference](../../index.html) » + * [AWS CLI 2.33.25 Command Reference](../../index.html) »