AWS Security ChangesHomeSearch

AWS cli documentation change

Service: cli · 2026-02-25 · Documentation low

File: cli/latest/reference/controlcatalog/get-control.md

Summary

Updated AWS CLI version reference and modified ExemptedPrincipalArns parameter description to use more generic ARN format

Security assessment

Changed ARN pattern description from regex to general format, potentially improving clarity but with no evidence of security vulnerability being addressed

Diff

diff --git a/cli/latest/reference/controlcatalog/get-control.md b/cli/latest/reference/controlcatalog/get-control.md
index 1406afdd3..1b246fd4f 100644
--- a//cli/latest/reference/controlcatalog/get-control.md
+++ b//cli/latest/reference/controlcatalog/get-control.md
@@ -15 +15 @@
-  * [AWS CLI 2.33.27 Command Reference](../../index.html) »
+  * [AWS CLI 2.33.29 Command Reference](../../index.html) »
@@ -341 +341 @@ Parameters -> (list)
->>   * **ExemptedPrincipalArns** : List of Amazon Web Services IAM principal ARNs exempted from the control. Each string is expected to be an IAM principal that follows the pattern `^arn:(aws|aws-us-gov):(iam|sts)::.+:.+$` Example: `["arn:aws:iam::*:role/ReadOnly","arn:aws:sts::*:assumed-role/ReadOnly/*"]`
+>>   * **ExemptedPrincipalArns** : List of Amazon Web Services IAM principal ARNs exempted from the control. Each string is expected to be an IAM principal that follows the format `arn:partition:service::account:resource` Example: `["arn:aws:iam::*:role/ReadOnly","arn:aws:sts::*:assumed-role/ReadOnly/*"]`
@@ -377 +377 @@ GovernedResources -> (list)
-  * [AWS CLI 2.33.27 Command Reference](../../index.html) »
+  * [AWS CLI 2.33.29 Command Reference](../../index.html) »