AWS cli documentation change
Summary
Added documentation for KMSKeyArn parameter in DurableConfig structure to specify KMS key for encrypting durable execution payload data
Security assessment
The change adds documentation about encrypting payload data using KMS customer managed keys, which is a security feature enhancement. No evidence of addressing a specific vulnerability.
Diff
diff --git a/cli/latest/reference/lambda/publish-version.md b/cli/latest/reference/lambda/publish-version.md index ab7e944ff..3f942a3cf 100644 --- a//cli/latest/reference/lambda/publish-version.md +++ b//cli/latest/reference/lambda/publish-version.md @@ -15 +15 @@ - * [AWS CLI 2.35.16 Command Reference](../../index.html) » + * [AWS CLI 2.35.19 Command Reference](../../index.html) » @@ -1145,0 +1146,12 @@ DurableConfig -> (structure) +> +> KMSKeyArn -> (string) +> +>> The ARN of the Key Management Service (KMS) customer managed key that is used to encrypt your durable execution’s payload data, including input, output, and error payloads. +>> +>> Constraints: +>> +>> * min: `0` +>> * max: `10000` +>> * pattern: `(arn:(aws[a-zA-Z-]*)?:[a-z0-9-.]+:.*)|()` +>> + @@ -1179 +1191 @@ DurableConfig -> (structure) - * [AWS CLI 2.35.16 Command Reference](../../index.html) » + * [AWS CLI 2.35.19 Command Reference](../../index.html) »