AWS Security ChangesHomeSearch

AWS bedrock-agentcore medium security documentation change

Service: bedrock-agentcore · 2026-06-19 · Security-related medium

File: bedrock-agentcore/latest/devguide/policy-schema-constraints.md

Summary

Updated context field constraints and section titles

Security assessment

Added constraint that context.output is only usable with guardrails, limiting potential data exposure. Concrete evidence: Explicit security boundary definition for context fields

Diff

diff --git a/bedrock-agentcore/latest/devguide/policy-schema-constraints.md b/bedrock-agentcore/latest/devguide/policy-schema-constraints.md
index 1b1297078..7e4277ce4 100644
--- a//bedrock-agentcore/latest/devguide/policy-schema-constraints.md
+++ b//bedrock-agentcore/latest/devguide/policy-schema-constraints.md
@@ -105 +105 @@ The principal type depends on the authentication method configured for your Agen
-  * Cannot access context fields other than `context.input`
+  * Cannot access context fields other than `context.input` (`context.output` can only be used with guardrails)
@@ -120 +120 @@ To use the Amazon Web Services Documentation, Javascript must be enabled. Please
-Authorization flow
+Time-based policy support