AWS Cognito custom attributes cannot be removed or modified after creation, creating significant operational risks. With a 50-attribute limit, no rollback capability in infrastructure-as-code deployments, and the near-impossibility of migrating user pools (passwords and MFA secrets aren't accessible), these attributes become permanent technical debt. The recommended approach is storing additional user data in your own backend database instead of using Cognito's custom attributes feature.
Sort: