AWS Security ChangesHomeSearch

AWS ivs documentation change

Service: ivs · 2026-04-25 · Documentation low

File: ivs/latest/LowLatencyAPIReference/API_CreateRecordingConfiguration.md

Summary

Added pattern validation for tag keys and values, and added documentation for security-related HTTP response headers (CORS, CSP, HSTS, X-Frame-Options, etc.) in error responses

Security assessment

The changes add documentation about security headers (contentSecurityPolicy, strictTransportSecurity, xFrameOptions, etc.) that are returned in HTTP responses, which helps developers understand security controls. The pattern validation for tags helps prevent injection attacks by restricting allowed characters. However, there's no evidence this fixes an existing security vulnerability - it appears to be documentation improvements.

Diff

diff --git a/ivs/latest/LowLatencyAPIReference/API_CreateRecordingConfiguration.md b/ivs/latest/LowLatencyAPIReference/API_CreateRecordingConfiguration.md
index 9ea1c7239..1c2ca9f91 100644
--- a//ivs/latest/LowLatencyAPIReference/API_CreateRecordingConfiguration.md
+++ b//ivs/latest/LowLatencyAPIReference/API_CreateRecordingConfiguration.md
@@ -106,0 +107,2 @@ Key Length Constraints: Minimum length of 1. Maximum length of 128.
+Key Pattern: `([\p{L}\p{Z}\p{N}_.:/=+\-@]+)`
+
@@ -108,0 +111,2 @@ Value Length Constraints: Minimum length of 0. Maximum length of 256.
+Value Pattern: `([\p{L}\p{Z}\p{N}_.:/=+\-@]*)`
+
@@ -172,0 +177,12 @@ For information about the errors that are common to all actions, see [Common Err
+**accessControlAllowOrigin**
+    
+
+**accessControlExposeHeaders**
+    
+
+**cacheControl**
+    
+
+**contentSecurityPolicy**
+    
+
@@ -177,0 +194,12 @@ User does not have sufficient access to perform this action.
+**strictTransportSecurity**
+    
+
+**xAmznErrorType**
+    
+
+**xContentTypeOptions**
+    
+
+**xFrameOptions**
+    
+
@@ -182,0 +211,12 @@ HTTP Status Code: 403
+**accessControlAllowOrigin**
+    
+
+**accessControlExposeHeaders**
+    
+
+**cacheControl**
+    
+
+**contentSecurityPolicy**
+    
+
@@ -187,0 +228,12 @@ Updating or deleting a resource can cause an inconsistent state.
+**strictTransportSecurity**
+    
+
+**xAmznErrorType**
+    
+
+**xContentTypeOptions**
+    
+
+**xFrameOptions**
+    
+
@@ -192,0 +245,12 @@ HTTP Status Code: 409
+**accessControlAllowOrigin**
+    
+
+**accessControlExposeHeaders**
+    
+
+**cacheControl**
+    
+
+**contentSecurityPolicy**
+    
+
@@ -197,0 +262,12 @@ Unexpected error during processing of request.
+**strictTransportSecurity**
+    
+
+**xAmznErrorType**
+    
+
+**xContentTypeOptions**
+    
+
+**xFrameOptions**
+    
+
@@ -202,0 +279,12 @@ HTTP Status Code: 500
+**accessControlAllowOrigin**
+    
+
+**accessControlExposeHeaders**
+    
+
+**cacheControl**
+    
+
+**contentSecurityPolicy**
+    
+
@@ -207,0 +296,12 @@ Your account is pending verification.
+**strictTransportSecurity**
+    
+
+**xAmznErrorType**
+    
+
+**xContentTypeOptions**
+    
+
+**xFrameOptions**
+    
+
@@ -212,0 +313,12 @@ HTTP Status Code: 403
+**accessControlAllowOrigin**
+    
+
+**accessControlExposeHeaders**
+    
+
+**cacheControl**
+    
+
+**contentSecurityPolicy**
+    
+
@@ -217,0 +330,12 @@ Request would cause a service quota to be exceeded.
+**strictTransportSecurity**
+    
+
+**xAmznErrorType**
+    
+
+**xContentTypeOptions**
+    
+
+**xFrameOptions**
+    
+
@@ -222,0 +347,12 @@ HTTP Status Code: 402
+**accessControlAllowOrigin**
+    
+
+**accessControlExposeHeaders**
+    
+
+**cacheControl**
+    
+
+**contentSecurityPolicy**
+    
+
@@ -227,0 +364,12 @@ The input fails to satisfy the constraints specified by an AWS service.
+**strictTransportSecurity**
+    
+
+**xAmznErrorType**
+    
+
+**xContentTypeOptions**
+    
+
+**xFrameOptions**
+    
+