AWS Security ChangesHomeSearch

AWS cli documentation change

Service: cli · 2026-05-22 · Documentation low

File: cli/latest/reference/devops-agent/list-services.md

Summary

Added 'mcpserversigv4' to the list of service types and included identical SigV4 MCP server documentation as in get-service.md, covering IAM role authentication and SigV4 signing parameters.

Security assessment

This mirrors the security documentation added in get-service.md, focusing on SigV4 authentication capabilities without indicating any security vulnerability fix. It expands documentation of security features but lacks evidence of addressing a specific issue.

Diff

diff --git a/cli/latest/reference/devops-agent/list-services.md b/cli/latest/reference/devops-agent/list-services.md
index 2dd509897..558098b31 100644
--- a//cli/latest/reference/devops-agent/list-services.md
+++ b//cli/latest/reference/devops-agent/list-services.md
@@ -15 +15 @@
-  * [AWS CLI 2.34.49 Command Reference](../../index.html) »
+  * [AWS CLI 2.34.52 Command Reference](../../index.html) »
@@ -120,0 +121 @@ See also: [AWS API Documentation](https://docs.aws.amazon.com/goto/WebAPI/devops
+>   * `mcpserversigv4`
@@ -306,0 +308 @@ services -> (list)
+>>>   * `mcpserversigv4`
@@ -334 +336 @@ services -> (list)
->>> This is a Tagged Union structure. Only one of the following top level keys can be set: `github`, `slack`, `mcpserverdatadog`, `mcpserver`, `servicenow`, `gitlab`, `mcpserversplunk`, `mcpservernewrelic`, `azuredevops`, `azureidentity`, `mcpservergrafana`, `pagerduty`.
+>>> This is a Tagged Union structure. Only one of the following top level keys can be set: `github`, `slack`, `mcpserverdatadog`, `mcpserver`, `servicenow`, `gitlab`, `mcpserversplunk`, `mcpservernewrelic`, `azuredevops`, `azureidentity`, `mcpservergrafana`, `pagerduty`, `mcpserversigv4`.
@@ -653,0 +656,106 @@ services -> (list)
+>>> 
+>>> mcpserversigv4 -> (structure)
+>>>
+>>>> SigV4-authenticated MCP server-specific service details.
+>>>> 
+>>>> name -> (string) [required]
+>>>>
+>>>>> MCP server name.
+>>>>> 
+>>>>> Constraints:
+>>>>> 
+>>>>>   * pattern: `[a-zA-Z0-9_-]+`
+>>>>> 
+
+>>>> 
+>>>> endpoint -> (string) [required]
+>>>>
+>>>>> MCP server endpoint URL.
+>>>>> 
+>>>>> Constraints:
+>>>>> 
+>>>>>   * pattern: `https://[a-zA-Z0-9.-]+(?::[0-9]+)?(?:/.*)?`
+>>>>> 
+
+>>>> 
+>>>> description -> (string)
+>>>>
+>>>>> Optional description for the MCP server.
+>>>>> 
+>>>>> Constraints:
+>>>>> 
+>>>>>   * min: `0`
+>>>>>   * max: `500`
+>>>>>   * pattern: `[\p{L}\p{N}\p{P}\p{S}\p{Z}]+`
+>>>>> 
+
+>>>> 
+>>>> region -> (string) [required]
+>>>>
+>>>>> AWS region for SigV4 signing. Use ‘*’ for SigV4a multi-region signing.
+>>>>> 
+>>>>> Constraints:
+>>>>> 
+>>>>>   * min: `1`
+>>>>>   * max: `50`
+>>>>>   * pattern: `(\*|[a-z]{2,4}(-[a-z]+)+-\d+)`
+>>>>> 
+
+>>>> 
+>>>> service -> (string) [required]
+>>>>
+>>>>> AWS service name for SigV4 signing.
+>>>>> 
+>>>>> Constraints:
+>>>>> 
+>>>>>   * min: `1`
+>>>>>   * max: `100`
+>>>>> 
+
+>>>> 
+>>>> roleArn -> (string) [required]
+>>>>
+>>>>> IAM role ARN to assume for SigV4 signing.
+>>>>> 
+>>>>> Constraints:
+>>>>> 
+>>>>>   * min: `1`
+>>>>>   * max: `255`
+>>>>>   * pattern: `arn:aws:iam::\d{12}:role/[a-zA-Z0-9+=,.@_/-]+`
+>>>>> 
+
+>>>> 
+>>>> customHeaders -> (map)
+>>>>
+>>>>> Custom headers for the SigV4 MCP server.
+>>>>> 
+>>>>> Constraints:
+>>>>> 
+>>>>>   * min: `0`
+>>>>>   * max: `10`
+>>>>> 
+
+>>>>> 
+>>>>> key -> (string)
+>>>>>
+>>>>>> HTTP header name. Allows alphanumeric characters, hyphens, and underscores.
+>>>>>> 
+>>>>>> Constraints:
+>>>>>> 
+>>>>>>   * min: `1`
+>>>>>>   * max: `256`
+>>>>>>   * pattern: `[a-zA-Z0-9-_]+`
+>>>>>> 
+
+>>>>> 
+>>>>> value -> (string)
+>>>>>
+>>>>>> Value type for custom headers.
+>>>>>> 
+>>>>>> Constraints:
+>>>>>> 
+>>>>>>   * min: `1`
+>>>>>>   * max: `4096`
+>>>>>>   * pattern: `[!-~]([ \t]*[!-~])*`
+>>>>>> 
+
@@ -688 +796 @@ services -> (list)
-  * [AWS CLI 2.34.49 Command Reference](../../index.html) »
+  * [AWS CLI 2.34.52 Command Reference](../../index.html) »