AWS Security ChangesHomeSearch

AWS cli documentation change

Service: cli · 2026-03-19 · Documentation medium

File: cli/latest/reference/glue/update-catalog.md

Summary

Added new parameter 'OverwriteChildResourcePermissionsWithDefault' to control overwriting Lake Formation permissions for child resources with default permissions

Security assessment

This change adds documentation for a new parameter that controls permission inheritance and overwriting behavior in Lake Formation. While this relates to security (access control), there is no evidence it addresses a specific security vulnerability. It appears to be a new feature addition for permission management.

Diff

diff --git a/cli/latest/reference/glue/update-catalog.md b/cli/latest/reference/glue/update-catalog.md
index fcb65aa71..d172bf123 100644
--- a//cli/latest/reference/glue/update-catalog.md
+++ b//cli/latest/reference/glue/update-catalog.md
@@ -15 +15 @@
-  * [AWS CLI 2.34.9 Command Reference](../../index.html) »
+  * [AWS CLI 2.34.12 Command Reference](../../index.html) »
@@ -427,0 +428,11 @@ See also: [AWS API Documentation](https://docs.aws.amazon.com/goto/WebAPI/glue-2
+> 
+> OverwriteChildResourcePermissionsWithDefault -> (string)
+>
+>> Overwrites existing Amazon Web Services Lake Formation permissions with `CatalogInput$CreateTableDefaultPermissions` and `CatalogInput$CreateDatabaseDefaultPermissions` for all child resources.
+>> 
+>> Possible values:
+>> 
+>>   * `Accept`
+>>   * `Deny`
+>> 
+
@@ -481 +492,2 @@ JSON Syntax:
-      "AllowFullTableExternalDataAccess": "True"|"False"
+      "AllowFullTableExternalDataAccess": "True"|"False",
+      "OverwriteChildResourcePermissionsWithDefault": "Accept"|"Deny"
@@ -610 +622 @@ None
-  * [AWS CLI 2.34.9 Command Reference](../../index.html) »
+  * [AWS CLI 2.34.12 Command Reference](../../index.html) »