AWS cli documentation change
Summary
Added documentation for StorageEncryptionType parameter describing encryption options for DB instances
Security assessment
The change adds documentation about encryption types (none, SSE-RDS, SSE-KMS) for data at rest protection. While this relates to security features, there's no indication this addresses a specific security vulnerability.
Diff
diff --git a/cli/latest/reference/rds/restore-db-instance-from-db-snapshot.md b/cli/latest/reference/rds/restore-db-instance-from-db-snapshot.md index 24bb2b9d4..413fc213e 100644 --- a//cli/latest/reference/rds/restore-db-instance-from-db-snapshot.md +++ b//cli/latest/reference/rds/restore-db-instance-from-db-snapshot.md @@ -15 +15 @@ - * [AWS CLI 2.33.22 Command Reference](../../index.html) » + * [AWS CLI 2.33.25 Command Reference](../../index.html) » @@ -1601,0 +1602,18 @@ DBInstance -> (structure) +> +> StorageEncryptionType -> (string) +> +>> The type of encryption used to protect data at rest in the DB instance. Possible values: +>> +>> * `none` \- The DB instance is not encrypted. +>> * `sse-rds` \- The DB instance is encrypted using an Amazon Web Services owned KMS key. +>> * `sse-kms` \- The DB instance is encrypted using a customer managed KMS key or Amazon Web Services managed KMS key. +>> + +>> +>> Possible values: +>> +>> * `none` +>> * `sse-kms` +>> * `sse-rds` +>> + @@ -2113 +2131 @@ DBInstance -> (structure) - * [AWS CLI 2.33.22 Command Reference](../../index.html) » + * [AWS CLI 2.33.25 Command Reference](../../index.html) »