AWS Security ChangesHomeSearch

AWS bedrock-agentcore medium security documentation change

Service: bedrock-agentcore · 2025-10-28 · Security-related medium

File: bedrock-agentcore/latest/devguide/runtime-service-contract.md

Summary

Updated authentication methods for HTTP Protocol to include OAuth 2.0 alongside SigV4, aligning all protocols with OAuth 2.0 support

Security assessment

The addition of OAuth 2.0 as an authentication method enhances security by providing a more modern and flexible authentication protocol. This change documents expanded security capabilities but does not explicitly address a specific vulnerability.

Diff

diff --git a/bedrock-agentcore/latest/devguide/runtime-service-contract.md b/bedrock-agentcore/latest/devguide/runtime-service-contract.md
index 3b1bf2739..87fdf6c3f 100644
--- a//bedrock-agentcore/latest/devguide/runtime-service-contract.md
+++ b//bedrock-agentcore/latest/devguide/runtime-service-contract.md
@@ -34 +34 @@ Protocol Comparison Feature | HTTP Protocol | MCP Protocol | A2A Protocol
-**Authentication** | SigV4 | SigV4 | SigV4, OAuth 2.0  
+**Authentication** | SigV4, OAuth 2.0 | SigV4, OAuth 2.0 | SigV4, OAuth 2.0