AWS Security ChangesHomeSearch

AWS cli documentation change

Service: cli · 2026-02-19 · Documentation low

File: cli/latest/reference/rds/restore-db-instance-to-point-in-time.md

Summary

Added documentation for StorageEncryptionType parameter describing encryption options for point-in-time restores

Security assessment

Clarifies encryption configuration during restoration but shows no evidence of addressing a specific security flaw. Improves security documentation quality.

Diff

diff --git a/cli/latest/reference/rds/restore-db-instance-to-point-in-time.md b/cli/latest/reference/rds/restore-db-instance-to-point-in-time.md
index 4d4ce8b08..f484546aa 100644
--- a//cli/latest/reference/rds/restore-db-instance-to-point-in-time.md
+++ b//cli/latest/reference/rds/restore-db-instance-to-point-in-time.md
@@ -15 +15 @@
-  * [AWS CLI 2.33.22 Command Reference](../../index.html) »
+  * [AWS CLI 2.33.25 Command Reference](../../index.html) »
@@ -1683,0 +1684,18 @@ DBInstance -> (structure)
+> 
+> StorageEncryptionType -> (string)
+>
+>> The type of encryption used to protect data at rest in the DB instance. Possible values:
+>> 
+>>   * `none` \- The DB instance is not encrypted.
+>>   * `sse-rds` \- The DB instance is encrypted using an Amazon Web Services owned KMS key.
+>>   * `sse-kms` \- The DB instance is encrypted using a customer managed KMS key or Amazon Web Services managed KMS key.
+>> 
+
+>> 
+>> Possible values:
+>> 
+>>   * `none`
+>>   * `sse-kms`
+>>   * `sse-rds`
+>> 
+
@@ -2195 +2213 @@ DBInstance -> (structure)
-  * [AWS CLI 2.33.22 Command Reference](../../index.html) »
+  * [AWS CLI 2.33.25 Command Reference](../../index.html) »