AWS sagemaker-unified-studio documentation change
Summary
Added important warning about third-party Git connections granting all users in the account read/write access to all repositories, not limited to the project or domain, and advises against storing sensitive information unless all users are authorized.
Security assessment
This change adds a security warning specifically in the context of creating a new project with Git connections. It highlights the lack of isolation and advises against storing sensitive information. There is no evidence of a specific security issue being fixed; it is a preventive security documentation update.
Diff
diff --git a/sagemaker-unified-studio/latest/userguide/create-new-project.md b/sagemaker-unified-studio/latest/userguide/create-new-project.md index 65972bd69..dca9f3fbf 100644 --- a//sagemaker-unified-studio/latest/userguide/create-new-project.md +++ b//sagemaker-unified-studio/latest/userguide/create-new-project.md @@ -47,0 +48,4 @@ As part of this process, if your admin has configured the parameters to be edita +###### Important + +When you connect a project to a third-party Git repository, all users who can sign in to any domain in the account have read and write access to all repositories on that connection. This access is not limited to the project or domain where the connection was created. To enforce isolation between repositories, use separate AWS accounts. Do not store sensitive information in connected repositories unless all users in the account are authorized to access it. +