AWS Security ChangesHomeSearch

AWS securityagent documentation change

Service: securityagent · 2026-06-19 · Documentation low

File: securityagent/latest/userguide/what-is.md

Summary

Added 'threat modeling' capabilities to product description and created dedicated threat modeling section

Security assessment

Introduces documentation for proactive threat modeling (STRIDE analysis, system architecture reviews) as a new security feature. No specific vulnerability remediation is mentioned.

Diff

diff --git a/securityagent/latest/userguide/what-is.md b/securityagent/latest/userguide/what-is.md
index ce719f468..46aaf1263 100644
--- a//securityagent/latest/userguide/what-is.md
+++ b//securityagent/latest/userguide/what-is.md
@@ -11 +11 @@ Key capabilitiesBenefits
-AWS Security Agent is a frontier agent that proactively secures your applications throughout the development lifecycle. It conducts automated security reviews tailored to your organizational requirements and delivers context-aware penetration testing on demand. By continuously validating security from design to deployment, AWS Security Agent helps prevent vulnerabilities early across all your environments.
+AWS Security Agent is a frontier agent that proactively secures your applications throughout the development lifecycle. It conducts automated security reviews tailored to your organizational requirements, builds threat models to identify how your applications could be attacked, and delivers context-aware penetration testing on demand. By continuously validating security from design to deployment, AWS Security Agent helps prevent vulnerabilities early across all your environments.
@@ -24,0 +25,4 @@ AWS Security Agent shifts security left by providing real-time security feedback
+### Threat modeling
+
+AWS Security Agent builds threat models of your applications to identify how they could be attacked. Provide technical design documents (scope docs) to define what the agent focuses on, source code as context for the agent to understand your existing system, or both. AWS Security Agent generates a system overview describing your application’s architecture, components, trust boundaries, data flows, and security posture, along with a set of threats classified by STRIDE category (Spoofing, Tampering, Repudiation, Information Disclosure, Denial of Service, Elevation of Privilege) with severity levels and actionable recommendations. Threat models are reusable configurations that you can re-run as your code and design evolve, enabling iterative security assessment throughout the development lifecycle.
+
@@ -37 +41 @@ AWS Security Agent delivers on-demand penetration testing by deploying specializ
-AWS Security Agent provides immediate access to security expertise. Development teams can run design reviews, code analyses, and penetration tests on-demand whenever needed, matching the pace of modern development cycles and enabling proactive security at every stage.
+AWS Security Agent provides immediate access to security expertise. Development teams can run design reviews, threat models, code analyses, and penetration tests on-demand whenever needed, matching the pace of modern development cycles and enabling proactive security at every stage.