AWS glue documentation change
Summary
Added release notes for AWS Glue 5.1 including security-related features like Spark-native FGAC and CloudTrail audit context
Security assessment
Documents new security features (fine-grained access control, audit logging) but does not indicate these changes address existing vulnerabilities. The FGAC limitation notice is operational guidance rather than a security fix. Security documentation is added but no specific vulnerability remediation is shown.
Diff
diff --git a/glue/latest/dg/release-notes.md b/glue/latest/dg/release-notes.md index 049325c7b..64eda070e 100644 --- a//glue/latest/dg/release-notes.md +++ b//glue/latest/dg/release-notes.md @@ -14,0 +15,24 @@ AWS Glue version | Supported runtime environment versions | Supported Java versi +AWS Glue 5.1 | + + * Spark 3.5.6 + * Python 3.11 + * Scala 2.12.18 + +| Java 17 | In addition to the spark engine upgrade, there are optimizations and upgrades built into this AWS Glue release, such as: + + * Open Table Formats (OTF) updated to Hudi 1.0.2, Iceberg 1.10.0, and Delta Lake 3.3.2 + * Iceberg format version 3.0 + * Hudi Full Table Access (FTA) with reads and writes + * Spark-native fine-grained access control (FGAC) DDL/DML operations on Hive, Iceberg, and Delta Lake tables registered in Lake Formation + * Audit context for Glue and Lake Formation API calls in CloudTrail log + + + +###### Limitations + +The following are limitations with AWS Glue 5.1: + + * FGAC is no longer supported in Amazon SageMaker Lakehouse + * Limited support for view SQL clause for creation of Iceberg Materialized Views, query rewrite, and incremental refresh + +