AWS prescriptive-guidance documentation change
Summary
Added survey link, updated image path, fixed broken hyperlinks for referenced capabilities, and added service usage reminder.
Security assessment
Changes include non-security content updates (survey link, image path) and documentation fixes (hyperlinks). No evidence of addressing vulnerabilities or security weaknesses. Added service reminder doesn't introduce new security concepts.
Diff
diff --git a/prescriptive-guidance/latest/security-reference-architecture-generative-ai/gen-auto-agents.md b/prescriptive-guidance/latest/security-reference-architecture-generative-ai/gen-auto-agents.md index 99a7a18df..f0fc8bcbe 100644 --- a//prescriptive-guidance/latest/security-reference-architecture-generative-ai/gen-auto-agents.md +++ b//prescriptive-guidance/latest/security-reference-architecture-generative-ai/gen-auto-agents.md @@ -10,0 +11,3 @@ RationaleSecurity considerationsRemediationsRecommended AWS services +Influence the future of the AWS Security Reference Architecture (AWS SRA) by taking a [short survey](https://amazonmr.au1.qualtrics.com/jfe/form/SV_e3XI1t37KMHU2ua). +--- + @@ -13 +16 @@ The scope of this capability is to secure autonomous agent functionality for gen - + @@ -117 +120 @@ Implement centralized log aggregation by forwarding all agent-related logs to th -This section discusses the AWS services and features that address the security risks that are specific to this capability. In addition to the services in this section, use Amazon CloudWatch, AWS CloudTrail, Amazon OpenSearch Serverless, Amazon S3, and Amazon Comprehend as explained in [Capability 1](./gen-ai-model-inference.html) (model inference) and [Capability 3](./gen-ai-agents.html) (RAG). +This section discusses the AWS services and features that address the security risks that are specific to this capability. In addition to the services in this section, use Amazon CloudWatch, AWS CloudTrail, Amazon OpenSearch Serverless, Amazon S3, and Amazon Comprehend as explained in Capability 1 (model inference) and Capability 3 (RAG). @@ -185,0 +189,2 @@ Configure key policies that grant encryption and decryption permissions only to +Use CloudWatch, CloudTrail, Amazon OpenSearch Serverless, Amazon S3, and Amazon Comprehend as explained in [Capability 1 (model inference)](./gen-ai-model-inference.html) and [Capability 3 (RAG)](./gen-ai-agents.html). +