AWS sagemaker-unified-studio high security documentation change
Summary
Added policy update entry addressing confused deputy problem
Security assessment
Explicitly mentions addressing the 'confused deputy problem', which is a known security vulnerability pattern.
Diff
diff --git a/sagemaker-unified-studio/latest/adminguide/doc-history.md index 1623f4861..9643ed247 100644 --- a/sagemaker-unified-studio/latest/adminguide/doc-history.md +++ b/sagemaker-unified-studio/latest/adminguide/doc-history.md @@ -12,0 +13 @@ Change| Description| Date +Policy update - SageMakerStudioProjectProvisioningRolePolicy| Policy updates to the SageMakerStudioProjectProvisioningRolePolicy - adding permission to change trust policy during project update to address confused deputy problem. Also adding permission to attach PartnerApps policy to the user role. For more information, see [Amazon SageMaker Unified Studio updates to AWS managed policies](https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam-awsmanpol.html).| March 5, 2025