AWS bedrock-agentcore medium security documentation change
Summary
Updated context field constraints and section titles
Security assessment
Added constraint that context.output is only usable with guardrails, limiting potential data exposure. Concrete evidence: Explicit security boundary definition for context fields
Diff
diff --git a/bedrock-agentcore/latest/devguide/policy-schema-constraints.md b/bedrock-agentcore/latest/devguide/policy-schema-constraints.md index 1b1297078..7e4277ce4 100644 --- a//bedrock-agentcore/latest/devguide/policy-schema-constraints.md +++ b//bedrock-agentcore/latest/devguide/policy-schema-constraints.md @@ -105 +105 @@ The principal type depends on the authentication method configured for your Agen - * Cannot access context fields other than `context.input` + * Cannot access context fields other than `context.input` (`context.output` can only be used with guardrails) @@ -120 +120 @@ To use the Amazon Web Services Documentation, Javascript must be enabled. Please -Authorization flow +Time-based policy support