AWS Security ChangesHomeSearch

AWS devopsagent documentation change

Service: devopsagent · 2026-03-13 · Documentation low

File: devopsagent/latest/userguide/configuring-capabilities-for-aws-devops-agent-connecting-mcp-servers.md

Summary

Updated links and section titles related to MCP server security configurations and prompt injection risks

Security assessment

Changes are documentation improvements for existing security practices (tool allowlisting and prompt injection risks) but do not indicate new security issues or add new security features. The updates improve clarity without altering security posture.

Diff

diff --git a/devopsagent/latest/userguide/configuring-capabilities-for-aws-devops-agent-connecting-mcp-servers.md b/devopsagent/latest/userguide/configuring-capabilities-for-aws-devops-agent-connecting-mcp-servers.md
index cf1f5005b..f73d6a998 100644
--- a//devopsagent/latest/userguide/configuring-capabilities-for-aws-devops-agent-connecting-mcp-servers.md
+++ b//devopsagent/latest/userguide/configuring-capabilities-for-aws-devops-agent-connecting-mcp-servers.md
@@ -28 +28 @@ When connecting MCP servers to AWS DevOps Agent, consider these security aspects
-  * **Tool allowlisting –** You should allowlist only the specific tools your Agent Space needs, rather than exposing all tools from your MCP server. See [Connecting MCP Servers](./configuring-capabilities-for-aws-devops-agent-connecting-mcp-servers.html) for how to allow list tools per Agent Space.
+  * **Tool allowlisting –** You should allowlist only the specific tools your Agent Space needs, rather than exposing all tools from your MCP server. See [Configuring MCP tools in an Agent Space](./configuring-capabilities-for-aws-devops-agent-connecting-mcp-servers.html) for how to allow list tools per Agent Space.
@@ -35 +35 @@ Please note that the maximum tool length of any MCP tool is 64.
-  * **Prompt injection risks** – Custom MCP servers can introduce additional risk of prompt injection attacks. See [AWS DevOps Agent Security](./aws-devops-agent-security.html) for more information.
+  * **Prompt injection risks** – Custom MCP servers can introduce additional risk of prompt injection attacks. See [Prompt injection protection: AWS DevOps Agent Security](./aws-devops-agent-security.html) for more information.