AWS Security ChangesHomeSearch

AWS sagemaker-unified-studio low security documentation change

Service: sagemaker-unified-studio · 2025-06-19 · Security-related low

File: sagemaker-unified-studio/latest/adminguide/doc-history.md

Summary

Documented policy update for SageMakerStudioDomainExecutionRolePolicy to support Amazon Q subscription checks

Security assessment

Updates IAM policy to enforce subscription-tier checks, improving authorization controls.

Diff

diff --git a/sagemaker-unified-studio/latest/adminguide/doc-history.md b/sagemaker-unified-studio/latest/adminguide/doc-history.md
index 0b042ecea..f9fbaad8e 100644
--- a//sagemaker-unified-studio/latest/adminguide/doc-history.md
+++ b//sagemaker-unified-studio/latest/adminguide/doc-history.md
@@ -10,0 +11 @@ Change| Description| Date
+Policy updates - SageMakerStudioDomainExecutionRolePolicy| Policy updates to the SageMakerStudioDomainExecutionRolePolicy - adding support for the Amazon Q `GetIdentityMetadata` API action in order to obtain user's Q subscription information to set an appropriate subscription tier badge. For more information, see [Amazon SageMaker Unified Studio updates to AWS managed policies](https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam-awsmanpol.html).| June 18, 2025