AWS Security ChangesHomeSearch

AWS sagemaker-unified-studio high security documentation change

Service: sagemaker-unified-studio · 2025-03-10 · Security-related high

File: sagemaker-unified-studio/latest/adminguide/doc-history.md

Summary

Added policy update entry addressing confused deputy problem

Security assessment

Explicitly mentions addressing the 'confused deputy problem', which is a known security vulnerability pattern.

Diff

diff --git a/sagemaker-unified-studio/latest/adminguide/doc-history.md
index 1623f4861..9643ed247 100644
--- a/sagemaker-unified-studio/latest/adminguide/doc-history.md
+++ b/sagemaker-unified-studio/latest/adminguide/doc-history.md
@@ -12,0 +13 @@ Change| Description| Date
+Policy update - SageMakerStudioProjectProvisioningRolePolicy| Policy updates to the SageMakerStudioProjectProvisioningRolePolicy - adding permission to change trust policy during project update to address confused deputy problem. Also adding permission to attach PartnerApps policy to the user role. For more information, see [Amazon SageMaker Unified Studio updates to AWS managed policies](https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam-awsmanpol.html).| March 5, 2025