AWS Security ChangesHomeSearch

AWS cli documentation change

Service: cli · 2026-03-19 · Documentation medium

File: cli/latest/reference/glue/create-catalog.md

Summary

Added new parameter 'OverwriteChildResourcePermissionsWithDefault' to control overwriting Lake Formation permissions with default permissions for child resources

Security assessment

This change adds documentation for a new security feature that allows administrators to overwrite existing Lake Formation permissions with default permissions for child resources. This is a security enhancement for access control management but does not indicate a specific security issue being fixed.

Diff

diff --git a/cli/latest/reference/glue/create-catalog.md b/cli/latest/reference/glue/create-catalog.md
index 356a7022e..e81a54e6c 100644
--- a//cli/latest/reference/glue/create-catalog.md
+++ b//cli/latest/reference/glue/create-catalog.md
@@ -15 +15 @@
-  * [AWS CLI 2.34.9 Command Reference](../../index.html) »
+  * [AWS CLI 2.34.12 Command Reference](../../index.html) »
@@ -428,0 +429,11 @@ See also: [AWS API Documentation](https://docs.aws.amazon.com/goto/WebAPI/glue-2
+> 
+> OverwriteChildResourcePermissionsWithDefault -> (string)
+>
+>> Overwrites existing Amazon Web Services Lake Formation permissions with `CatalogInput$CreateTableDefaultPermissions` and `CatalogInput$CreateDatabaseDefaultPermissions` for all child resources.
+>> 
+>> Possible values:
+>> 
+>>   * `Accept`
+>>   * `Deny`
+>> 
+
@@ -482 +493,2 @@ JSON Syntax:
-      "AllowFullTableExternalDataAccess": "True"|"False"
+      "AllowFullTableExternalDataAccess": "True"|"False",
+      "OverwriteChildResourcePermissionsWithDefault": "Accept"|"Deny"
@@ -653 +665 @@ None
-  * [AWS CLI 2.34.9 Command Reference](../../index.html) »
+  * [AWS CLI 2.34.12 Command Reference](../../index.html) »