AWS Security ChangesHomeSearch

AWS devopsagent medium security documentation change

Service: devopsagent · 2026-02-28 · Security-related medium

File: devopsagent/latest/userguide/aws-devops-agent-security.md

Summary

Reduced IAM auth session timeout from 30 to 10 minutes, updated AI safety model references

Security assessment

Session timeout reduction directly improves security posture by limiting exposure window. Model generalization suggests possible security updates

Diff

diff --git a/devopsagent/latest/userguide/aws-devops-agent-security.md b/devopsagent/latest/userguide/aws-devops-agent-security.md
index a698b4160..3a0f38f19 100644
--- a//devopsagent/latest/userguide/aws-devops-agent-security.md
+++ b//devopsagent/latest/userguide/aws-devops-agent-security.md
@@ -49 +49 @@ AWS DevOps Agent provides two authentication methods to log into the AWS DevOps
-  * **IAM authentication link** – An alternative method provides direct access to the web app from the AWS Management Console using JWT-based tokens derived from an existing AWS Management Console session. This option is useful for evaluating AWS DevOps Agent before implementing full Identity Center integration as well as gaining administrative access if the AWS DevOps Agent web app becomes inaccessible through Identity Center based authentication. Sessions are limited to 30 minutes.
+  * **IAM authentication link** – An alternative method provides direct access to the web app from the AWS Management Console using JWT-based tokens derived from an existing AWS Management Console session. This option is useful for evaluating AWS DevOps Agent before implementing full Identity Center integration as well as gaining administrative access if the AWS DevOps Agent web app becomes inaccessible through Identity Center based authentication. Sessions are limited to 10 minutes.
@@ -132 +132 @@ Prompt injection safeguards:
-  * **AI safety protections** – AWS DevOps Agent uses Claude Sonnet 4.5, which includes AI Safety Level 3 (ASL-3) protections. These protections include classifiers that detect and prevent prompt injection attacks before they can affect agent behavior.
+  * **AI safety protections** – AWS DevOps Agent uses models with AI Safety Level 3 (ASL-3) protections. These protections include classifiers that detect and prevent prompt injection attacks before they can affect agent behavior.
@@ -272 +272 @@ To use the Amazon Web Services Documentation, Javascript must be enabled. Please
-Invoking DevOps Agent through Webhook
+Vended Logs and Metrics