AWS Security ChangesHomeSearch

AWS AWSCloudFormation documentation change

Service: AWSCloudFormation · 2026-06-04 · Documentation low

File: AWSCloudFormation/latest/TemplateReference/aws-properties-bedrockagentcore-gatewaytarget-credentialproviderconfiguration.md

Summary

Expanded allowed values for CredentialProvider to include CALLER_IAM_CREDENTIALS and JWT_PASSTHROUGH, and updated example reference from IamCredentialProvider to HttpTargetConfiguration

Security assessment

Added new authentication methods (CALLER_IAM_CREDENTIALS/JWT_PASSTHROUGH) which are security features, but no evidence of vulnerability remediation. Enhances authentication options without addressing specific security flaws.

Diff

diff --git a/AWSCloudFormation/latest/TemplateReference/aws-properties-bedrockagentcore-gatewaytarget-credentialproviderconfiguration.md b/AWSCloudFormation/latest/TemplateReference/aws-properties-bedrockagentcore-gatewaytarget-credentialproviderconfiguration.md
index a79a80b5c..75fed5f45 100644
--- a//AWSCloudFormation/latest/TemplateReference/aws-properties-bedrockagentcore-gatewaytarget-credentialproviderconfiguration.md
+++ b//AWSCloudFormation/latest/TemplateReference/aws-properties-bedrockagentcore-gatewaytarget-credentialproviderconfiguration.md
@@ -56 +56 @@ _Required_ : Yes
- _Allowed values_ : `GATEWAY_IAM_ROLE | OAUTH | API_KEY`
+ _Allowed values_ : `GATEWAY_IAM_ROLE | OAUTH | API_KEY | CALLER_IAM_CREDENTIALS | JWT_PASSTHROUGH`
@@ -68 +68 @@ CredentialProvider
-IamCredentialProvider
+HttpTargetConfiguration