The sample applications in this repository are provided as proof-of-value demonstrations and are not production-ready solutions. While all samples are required to pass automated security scanning (ASH) at the time they are contributed, this does not guarantee they are free of vulnerabilities. Additionally, samples are not guaranteed to receive security patches or dependency updates after publication.

Before deploying any sample to a production environment, you are solely responsible for:

• Conducting a thorough security review of the code
• Keeping dependencies up to date and patching known vulnerabilities
• Implementing appropriate access controls, encryption, and network security
• Performing penetration testing and vulnerability assessments
• Ensuring compliance with your organization's security requirements
• Determining how the AWS Shared Responsibility Model applies to your use case

AWS offers a broad set of security tools and configurations to help you secure your workloads.

If you discover a potential security issue in this project, we ask that you notify AWS/Amazon Security via our vulnerability reporting page. Please do not create a public GitHub issue.