AWS Security ChangesHomeSearch

AWS eks documentation change

Service: eks · 2026-01-25 · Documentation medium

File: eks/latest/userguide/eks-mcp-getting-started.md

Summary

Added sensitive data redaction documentation and updated tool references

Security assessment

Documents automatic redaction of security tokens/certificates to prevent data exposure. This is a security feature enhancement but doesn't address a specific vulnerability.

Diff

diff --git a/eks/latest/userguide/eks-mcp-getting-started.md b/eks/latest/userguide/eks-mcp-getting-started.md
index 89d45c373..d5a1f8b72 100644
--- a//eks/latest/userguide/eks-mcp-getting-started.md
+++ b//eks/latest/userguide/eks-mcp-getting-started.md
@@ -694,0 +695,11 @@ Instead of passing secrets through MCP:
+Redaction of sensitive data:
+
+  * The EKS MCP Server automatically redacts common patterns for security tokens, certificates, and other sensitive information in tool responses.
+
+  * Redacted values are replaced with `HIDDEN_FOR_SECURITY_REASONS` to avoid accidentally exposing data to the model.
+
+  * This redaction applies to all tool responses including logs, resource descriptions, and configuration data.
+
+
+
+
@@ -697 +708 @@ Instead of passing secrets through MCP:
-For a complete list of tools and configurations, see [Amazon EKS MCP Server Tool Configuration Reference](./eks-mcp-tool-configurations.html).
+For configuration options, see [Amazon EKS MCP Server Configuration Reference](./eks-mcp-tool-configurations.html). For a complete list of tools, see [Amazon EKS MCP Server Tools Reference](./eks-mcp-tools.html).
@@ -707 +718 @@ Model Context Protocol (MCP)
-Tools
+Configuration