AWS bedrock-agentcore documentation change
Summary
Added documentation for referencing Secrets Manager secrets in Identity Credential Providers
Security assessment
New feature allows better secret management integration but doesn't fix existing vulnerabilities. Documents security enhancement for credential management.
Diff
diff --git a/bedrock-agentcore/latest/devguide/release-notes.md b/bedrock-agentcore/latest/devguide/release-notes.md index 568062f74..bc0968ce4 100644 --- a//bedrock-agentcore/latest/devguide/release-notes.md +++ b//bedrock-agentcore/latest/devguide/release-notes.md @@ -14,0 +15,4 @@ We recommend subscribing to the RSS feed so updates to these notes are delivered +### Identity: Reference Existing Secrets in AWS Secrets Manager + +Amazon Bedrock AgentCore Identity now allows you to reference existing AWS Secrets Manager secret ARNs directly in AgentCore Identity Credential Providers. You can create and manage your secrets in AWS Secrets Manager using your own governance and compliance policies. These policies include custom CMKs, tagging strategies, automatic rotation, and resource policies. You can then reference the existing secret ARN when you configure a Credential Provider in AgentCore Identity. This gives you full ownership of how your secrets are created, classified, and governed, without changing how AgentCore Identity uses them at runtime. +