AWS Security ChangesHomeSearch

AWS cli documentation change

Service: cli · 2026-02-28 · Documentation low

File: cli/latest/reference/securityhub/update-organization-configuration.md

Summary

Updated documentation to reflect Security Hub CSPM branding, added --cli-error-format parameter, and revised auto-enablement descriptions for CSPM

Security assessment

The changes primarily update references from 'Security Hub' to 'Security Hub CSPM' (Cloud Security Posture Management), indicating enhanced documentation about CSPM-related configurations. While this clarifies security posture management capabilities, there is no evidence of addressing a specific vulnerability or security incident. The addition of CSPM terminology aligns with security feature documentation but doesn't introduce new security controls.

Diff

diff --git a/cli/latest/reference/securityhub/update-organization-configuration.md b/cli/latest/reference/securityhub/update-organization-configuration.md
index 24482679d..d8a04e43f 100644
--- a//cli/latest/reference/securityhub/update-organization-configuration.md
+++ b//cli/latest/reference/securityhub/update-organization-configuration.md
@@ -15 +15 @@
-  * [AWS CLI 2.33.29 Command Reference](../../index.html) »
+  * [AWS CLI 2.34.0 Command Reference](../../index.html) »
@@ -60 +60 @@ First time using the AWS CLI? See the [User Guide](https://docs.aws.amazon.com/c
-Updates the configuration of your organization in Security Hub. Only the Security Hub administrator account can invoke this operation.
+Updates the configuration of your organization in Security Hub CSPM. Only the Security Hub CSPM administrator account can invoke this operation.
@@ -90,0 +91 @@ See also: [AWS API Documentation](https://docs.aws.amazon.com/goto/WebAPI/securi
+    [--cli-error-format <value>]
@@ -97 +98 @@ See also: [AWS API Documentation](https://docs.aws.amazon.com/goto/WebAPI/securi
-> Whether to automatically enable Security Hub in new member accounts when they join the organization.
+> Whether to automatically enable Security Hub CSPM in new member accounts when they join the organization.
@@ -99 +100 @@ See also: [AWS API Documentation](https://docs.aws.amazon.com/goto/WebAPI/securi
-> If set to `true` , then Security Hub is automatically enabled in new accounts. If set to `false` , then Security Hub isn’t enabled in new accounts automatically. The default value is `false` .
+> If set to `true` , then Security Hub CSPM is automatically enabled in new accounts. If set to `false` , then Security Hub CSPM isn’t enabled in new accounts automatically. The default value is `false` .
@@ -101 +102 @@ See also: [AWS API Documentation](https://docs.aws.amazon.com/goto/WebAPI/securi
-> If the `ConfigurationType` of your organization is set to `CENTRAL` , then this field is set to `false` and can’t be changed in the home Region and linked Regions. However, in that case, the delegated administrator can create a configuration policy in which Security Hub is enabled and associate the policy with new organization accounts.
+> If the `ConfigurationType` of your organization is set to `CENTRAL` , then this field is set to `false` and can’t be changed in the home Region and linked Regions. However, in that case, the delegated administrator can create a configuration policy in which Security Hub CSPM is enabled and associate the policy with new organization accounts.
@@ -105 +106 @@ See also: [AWS API Documentation](https://docs.aws.amazon.com/goto/WebAPI/securi
-> Whether to automatically enable Security Hub [default standards](https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-standards-enable-disable.html) in new member accounts when they join the organization.
+> Whether to automatically enable Security Hub CSPM [default standards](https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-standards-enable-disable.html) in new member accounts when they join the organization.
@@ -109 +110 @@ See also: [AWS API Documentation](https://docs.aws.amazon.com/goto/WebAPI/securi
-> If equal to `DEFAULT` , then Security Hub default standards are automatically enabled for new member accounts. If equal to `NONE` , then default standards are not automatically enabled for new member accounts.
+> If equal to `DEFAULT` , then Security Hub CSPM default standards are automatically enabled for new member accounts. If equal to `NONE` , then default standards are not automatically enabled for new member accounts.
@@ -122 +123 @@ See also: [AWS API Documentation](https://docs.aws.amazon.com/goto/WebAPI/securi
-> Provides information about the way an organization is configured in Security Hub.
+> Provides information about the way an organization is configured in Security Hub CSPM.
@@ -128 +129 @@ See also: [AWS API Documentation](https://docs.aws.amazon.com/goto/WebAPI/securi
->> If you use local configuration, the Security Hub delegated administrator can set `AutoEnable` to `true` and `AutoEnableStandards` to `DEFAULT` . This automatically enables Security Hub and default security standards in new organization accounts. These new account settings must be set separately in each Amazon Web Services Region, and settings may be different in each Region.
+>> If you use local configuration, the Security Hub CSPM delegated administrator can set `AutoEnable` to `true` and `AutoEnableStandards` to `DEFAULT` . This automatically enables Security Hub CSPM and default security standards in new organization accounts. These new account settings must be set separately in each Amazon Web Services Region, and settings may be different in each Region.
@@ -130 +131 @@ See also: [AWS API Documentation](https://docs.aws.amazon.com/goto/WebAPI/securi
->> If you use central configuration, the delegated administrator can create configuration policies. Configuration policies can be used to configure Security Hub, security standards, and security controls in multiple accounts and Regions. If you want new organization accounts to use a specific configuration, you can create a configuration policy and associate it with the root or specific organizational units (OUs). New accounts will inherit the policy from the root or their assigned OU.
+>> If you use central configuration, the delegated administrator can create configuration policies. Configuration policies can be used to configure Security Hub CSPM, security standards, and security controls in multiple accounts and Regions. If you want new organization accounts to use a specific configuration, you can create a configuration policy and associate it with the root or specific organizational units (OUs). New accounts will inherit the policy from the root or their assigned OU.
@@ -207,0 +209 @@ The formatting style for command output.
+  * off
@@ -273,0 +276,13 @@ Disable automatically prompt for CLI input parameters.
+`--cli-error-format` (string)
+
+The formatting style for error output. By default, errors are displayed in enhanced format.
+
+  * legacy
+  * json
+  * yaml
+  * text
+  * table
+  * enhanced
+
+
+
@@ -310 +325 @@ None
-  * [AWS CLI 2.33.29 Command Reference](../../index.html) »
+  * [AWS CLI 2.34.0 Command Reference](../../index.html) »