AWS Security ChangesHomeSearch

AWS bedrock-agentcore medium security documentation change

Service: bedrock-agentcore · 2025-10-13 · Security-related medium

File: bedrock-agentcore/latest/devguide/browser-onboarding.md

Summary

Added 'Best practices' section with security recommendations and SDK installation instructions

Security assessment

Added explicit security guidance to 'Protect sensitive data by avoiding hardcoded credentials in browser automation code' which directly addresses credential management security concerns

Diff

diff --git a/bedrock-agentcore/latest/devguide/browser-onboarding.md b/bedrock-agentcore/latest/devguide/browser-onboarding.md
index 65a205280..97072491b 100644
--- a//bedrock-agentcore/latest/devguide/browser-onboarding.md
+++ b//bedrock-agentcore/latest/devguide/browser-onboarding.md
@@ -5 +5 @@
-PrerequisitesQuick start
+PrerequisitesQuick startBest practices
@@ -9 +9 @@ Amazon Bedrock AgentCore is in preview release and is subject to change.
-# Getting Started with AgentCore Browser
+# Get started with Amazon Bedrock AgentCore Browser
@@ -15 +15 @@ The following sections show how you can get started with the AgentCore Browser t
-Before using the Browser Tool, ensure you meet the following requirements: 
+Before using the AgentCore Browser, ensure you meet the following requirements:
@@ -18,0 +19,2 @@ Before using the Browser Tool, ensure you meet the following requirements:
+  * Python 3.10+ installed
+
@@ -23,0 +26,7 @@ Before using the Browser Tool, ensure you meet the following requirements:
+###### Install the SDK
+
+Install the Amazon Bedrock AgentCore SDK using pip:
+    
+    
+    pip install bedrock-agentcore
+
@@ -123,0 +133,19 @@ The BrowserViewerServer component provides a local web server that connects to t
+## Best practices
+
+Follow these recommendations to optimize your AgentCore Browser usage:
+
+  * Use context managers to ensure proper resource cleanup
+
+  * Implement proper exception handling to ensure browser sessions close correctly
+
+  * Optimize performance when making multiple browser requests
+
+  * Protect sensitive data by avoiding hardcoded credentials in browser automation code
+
+  * Configure appropriate timeouts for network and page load operations
+
+  * Implement error recovery mechanisms for common browser automation challenges
+
+
+
+