AWS cli documentation change
Summary
Added documentation for KMSKeyArn parameter in DurableConfig structure to specify KMS key for encrypting durable execution payload data
Security assessment
Documents new encryption capability for payload data using KMS keys, improving security posture. No indication of fixing a specific security vulnerability.
Diff
diff --git a/cli/latest/reference/lambda/update-function-code.md b/cli/latest/reference/lambda/update-function-code.md index 1a64e871f..4e8f707a5 100644 --- a//cli/latest/reference/lambda/update-function-code.md +++ b//cli/latest/reference/lambda/update-function-code.md @@ -15 +15 @@ - * [AWS CLI 2.35.16 Command Reference](../../index.html) » + * [AWS CLI 2.35.19 Command Reference](../../index.html) » @@ -1253,0 +1254,12 @@ DurableConfig -> (structure) +> +> KMSKeyArn -> (string) +> +>> The ARN of the Key Management Service (KMS) customer managed key that is used to encrypt your durable execution’s payload data, including input, output, and error payloads. +>> +>> Constraints: +>> +>> * min: `0` +>> * max: `10000` +>> * pattern: `(arn:(aws[a-zA-Z-]*)?:[a-z0-9-.]+:.*)|()` +>> + @@ -1287 +1299 @@ DurableConfig -> (structure) - * [AWS CLI 2.35.16 Command Reference](../../index.html) » + * [AWS CLI 2.35.19 Command Reference](../../index.html) »