AWS Security ChangesHomeSearch

AWS sagemaker-unified-studio documentation change

Service: sagemaker-unified-studio · 2026-03-22 · Documentation medium

File: sagemaker-unified-studio/latest/userguide/storage.md

Summary

Added important warning about third-party Git connections granting all users in the account read/write access to all repositories, not limited to the project or domain, and advises against storing sensitive information unless all users are authorized.

Security assessment

This change adds a security warning in the storage section regarding Git connections, emphasizing broad access and advising against storing sensitive information. It is consistent with other warnings added across documentation and is intended to prevent data exposure. No specific security vulnerability is indicated.

Diff

diff --git a/sagemaker-unified-studio/latest/userguide/storage.md b/sagemaker-unified-studio/latest/userguide/storage.md
index 2141b8ea1..9aa584aae 100644
--- a//sagemaker-unified-studio/latest/userguide/storage.md
+++ b//sagemaker-unified-studio/latest/userguide/storage.md
@@ -39,0 +40,4 @@ When you choose Git-based storage, you'll need to specify a repository and branc
+###### Important
+
+When you connect a project to a third-party Git repository, all users who can sign in to any domain in the account have read and write access to all repositories on that connection. This access is not limited to the project or domain where the connection was created. To enforce isolation between repositories, use separate AWS accounts. Do not store sensitive information in connected repositories unless all users in the account are authorized to access it.
+