AWS quick documentation change
Summary
Added documentation for public-facing applications including capabilities, limitations, and security model references
Security assessment
The change documents security implications of public apps (anonymous access to shared storage, absence of private storage access, and disabled features like action connectors). However, there is no evidence of addressing a specific vulnerability.
Diff
diff --git a/quick/latest/userguide/what-you-can-build.md b/quick/latest/userguide/what-you-can-build.md index 1c44d95e7..9b12a4d90 100644 --- a//quick/latest/userguide/what-you-can-build.md +++ b//quick/latest/userguide/what-you-can-build.md @@ -7 +7 @@ -User interfacesData storageAI inferenceEmbedded visualsEmbedded chat experiencesFile handling +User interfacesData storageAI inferenceEmbedded visualsEmbedded chat experiencesPublic-facing applicationsFile handling @@ -53,0 +54,17 @@ You cannot currently embed a standalone chat agent that was created separately i +## Public-facing applications + +You can publish apps to the public internet so that anyone with the link can use them—no Amazon Quick account required. Public apps are available on Free and Plus accounts. + +Public apps support the following capabilities: + + * **Shared storage** — Anonymous viewers can read from and write to shared app storage. Private storage is not available to anonymous viewers. + + * **AI inference** — You can enable AI inference for public apps. Usage counts against the app owner's subscription quota. + + * **Custom domains** — Public apps are served from a unique URL on the Quick domain. Custom domains are not supported. + + + + +Public apps do not support action connectors, embedded visuals, embedded chat experiences, or Amazon Quick spaces. For the full security model, see [Public app security](./security-sandbox-apps.html#apps-public-app-security). +