AWS securityhub documentation change
Summary
Added a changelog entry documenting the expansion of supported values for the 'temporaryPasswordValidity' parameter in the Cognito.3 security control.
Security assessment
This documents a change to a security control's parameters. It adds documentation about a security feature update but does not indicate a security issue was fixed.
Diff
diff --git a/securityhub/latest/userguide/controls-change-log.md b/securityhub/latest/userguide/controls-change-log.md index 3a0dcf35d..2aac4899b 100644 --- a//securityhub/latest/userguide/controls-change-log.md +++ b//securityhub/latest/userguide/controls-change-log.md @@ -17,0 +18 @@ April 6, 2026 | [[ELB.17] Application and Network Load Balancers with listeners +April 3, 2026 | [[Cognito.3] Password policies for Cognito user pools should have strong configurations](./cognito-controls.html#cognito-3) | Security Hub CSPM expanded the range of supported values for the `temporaryPasswordValidity` parameter of this control. You can now specify a value ranging from 1-365 days. Previously, the range was 7-365 days.