AWS securityagent documentation change
Summary
Added clarification about public repository remediation and updated geographic data processing description from 'within the United States' to 'within the same geographic region'.
Security assessment
This change updates security best practices documentation to clarify data residency and remediation behavior. The geographic region change expands the service's data processing scope but doesn't indicate a security vulnerability fix. It's a documentation update for compliance and operational clarity.
Diff
diff --git a/securityagent/latest/userguide/security-best-practices.md b/securityagent/latest/userguide/security-best-practices.md index 584ab63b8..3b09488a9 100644 --- a//securityagent/latest/userguide/security-best-practices.md +++ b//securityagent/latest/userguide/security-best-practices.md @@ -95,0 +96,2 @@ AWS Security Agent does not provide code security guidance for public repositori +AWS Security Agent penetration tests can review and remediate private and public repositories that you configured for the pentest. If the repository is public, the remediation code will be provided as a downloadable diff file instead of a pull request. + @@ -104 +106 @@ Accessible URLs specify additional endpoints that the penetration testing enviro -AWS Security Agent uses Amazon Bedrock’s geographic cross-Region inference to increase throughput while keeping data processing within the United States. At launch, AWS Security Agent is deployed in the US geographic region only. +AWS Security Agent uses Amazon Bedrock’s geographic cross-Region inference to increase throughput while keeping data processing within the same geographic region.