AWS Security ChangesHomeSearch

AWS securityhub documentation change

Service: securityhub · 2026-04-19 · Documentation low

File: securityhub/latest/userguide/controls-change-log.md

Summary

Added a changelog entry documenting the expansion of supported values for the 'temporaryPasswordValidity' parameter in the Cognito.3 security control.

Security assessment

This documents a change to a security control's parameters. It adds documentation about a security feature update but does not indicate a security issue was fixed.

Diff

diff --git a/securityhub/latest/userguide/controls-change-log.md b/securityhub/latest/userguide/controls-change-log.md
index 3a0dcf35d..2aac4899b 100644
--- a//securityhub/latest/userguide/controls-change-log.md
+++ b//securityhub/latest/userguide/controls-change-log.md
@@ -17,0 +18 @@ April 6, 2026 | [[ELB.17] Application and Network Load Balancers with listeners
+April 3, 2026 | [[Cognito.3] Password policies for Cognito user pools should have strong configurations](./cognito-controls.html#cognito-3) | Security Hub CSPM expanded the range of supported values for the `temporaryPasswordValidity` parameter of this control. You can now specify a value ranging from 1-365 days. Previously, the range was 7-365 days.