![]() ![]() The AWS Cloud platform expands daily. Learn about announcements, launches, news, innovation and more from Amazon Web Services. |
---|
AI21 Labs' Jamba-Instruct model now available in Amazon Bedrock
AI21 Labs’ Jamba-Instruct, a powerful instruction-following large language model, is now available in Amazon Bedrock. Fine-tuned for instruction following and built for reliable commercial use, Jamba-Instruct can engage in open-ended dialogue, understand context and subtext, and complete a wide variety of tasks based on natural language instructions. |
Amazon CodeCatalyst now supports GitLab.com source code repositories
Amazon CodeCatalyst now supports the use of source code repositories hosted in GitLab.com in CodeCatalyst projects. This allows customers to use GitLab.com repositories with CodeCatalyst’s features such as its cloud IDE (Development Environments), Amazon Q feature development, and custom and public blueprints. Customers can also trigger CodeCatalyst workflows based on events in GitLab.com, view the status of CodeCatalyst workflows back in GitLab.com, and even block GitLab.com pull request merges based on the status of CodeCatalyst workflows. |
Amazon MSK supports in-place upgrades from M5, T3 instance types to Graviton3 based M7G
You can now upgrade your Amazon Managed Streaming for Apache Kafka (Amazon MSK) provisioned clusters running on X-86 based M5 or T3 instances and replace them with AWS Graviton3-based M7G instances with a single click of a button. In-place upgrades allows you to seamlessly switch over your existing provisioned clusters to M7G instance type for better price performance, while continuing to serve reads and writes for your connecting client applications. |
Amazon DocumentDB announces IAM database authentication
Amazon DocumentDB (with MongoDB compatibility) now supports cluster authentication with AWS Identity and Access Management (IAM) users and roles ARNs. Users and applications connecting to an Amazon DocumentDB cluster to read, write, update, or delete data can now use an AWS IAM identity to authenticate connection requests. These users and applications can use the same AWS IAM user or role when connecting to different DocumentDB clusters and to other AWS services. |
Amazon Redshift Serverless with lower base capacity available in the Asia Pacific (Mumbai) Region
Amazon Redshift now allows you to get started with Amazon Redshift Serverless with a lower data warehouse base capacity configuration of 8 Redshift Processing Units (RPUs) in the AWS Asia Pacific (Mumbai) region. Amazon Redshift Serverless measures data warehouse capacity in RPUs, and you pay only for the duration of workloads you run in RPU-hours on a per-second basis. Previously, the minimum base capacity required to run Amazon Redshift Serverless was 32 RPUs. With the new lower base capacity minimum of 8 RPUs, you now have even more flexibility to a support diverse set of workloads of small to large complexity based on your price performance requirements. You can increment or decrement the RPU in units of 8 RPUs. |
Amazon Aurora now provides additional monitoring information during upgrades
Amazon Aurora now provides additional granular monitoring information during upgrades for enhanced observability. Customers can use the additional granularity shared in Amazon Aurora Events to stay informed and better manage their database upgrades. |
Amazon EC2 C6a instances now available in additional regions
Starting today, the general-purpose Amazon EC2 C6a instances are now available in Asia Pacific (Hong Kong) region. C6a instances are powered by third-generation AMD EPYC processors with a maximum frequency of 3.6 GHz. C6a instances deliver up to 15% better price performance than comparable C5a instances. C6a instances offer 10% lower cost than comparable x86-based EC2 instances. These instances are built on the AWS Nitro System, a combination of dedicated hardware and lightweight hypervisor that delivers practically all of the compute and memory resources of the host hardware to your instances for better overall performance and security. |
AWS CodeBuild supports Arm-based workloads using AWS Graviton3
AWS CodeBuild’s support for Arm-based workloads now run on AWS Graviton3 without any additional configuration. |
Amazon ElastiCache supports M7g and R7g Graviton3-based nodes in additional AWS regions
Amazon ElastiCache now supports Graviton3-based M7g and R7g node families. ElastiCache Graviton3 nodes deliver improved price-performance compared to Graviton2. As an example, when running ElastiCache for Redis on an R7g.4xlarge node, you can achieve up to 28% increased throughput (read and write operations per second) and up to 21% improved P99 latency, compared to running on R6g.4xlarge. In addition, these nodes deliver up to 25% higher networking bandwidth. |
Amazon Time Sync Service expands microsecond-accurate time to 27 EC2 instance types
The Amazon Time Sync Service now supports clock synchronization within microseconds of UTC on 27 additional Amazon Elastic Compute Cloud (Amazon EC2) instance types in supported regions, including all C7gd, M7gd, and R7gd instances. |
Amazon RDS for MySQL announces Extended Support minor 5.7.44-RDS.20240529
Amazon Relational Database Service (RDS) for MySQL announces Amazon RDS Extended Support minor version 5.7.44-RDS.20240529. We recommend that you upgrade to this version to fix known security vulnerabilities and bugs in prior versions of MySQL. Learn more about the bug fixes and patches in this version in the Amazon RDS User Guide. |
Amazon Redshift Concurrency Scaling is now available in three additional regions
Amazon Redshift Concurrency Scaling is now available in the AWS Europe (Zurich), Europe (Spain), and Middle East (UAE) regions. |
Knowledge Bases for Amazon Bedrock now offers observability logs
Knowledge Bases for Amazon Bedrock is a fully managed Retrieval-Augmented Generation (RAG) capability that allows you to connect foundation models (FMs) to internal company data sources to deliver relevant and accurate responses. Knowledge Bases now supports observability, offering log delivery choice through CloudWatch, S3 buckets, and Firehose streams. This capability provides enhanced visibility and timely insights into the execution of knowledge ingestion steps. This capability is supported in the all AWS Regions where Knowledge Bases is available. To learn more about these features and how to get started, refer to the Knowledge Bases for Amazon Bedrock documentation and visit the Amazon Bedrock console. |
Amazon OpenSearch Serverless now available in Canada (Central) region
We are excited to announce the availability of Amazon OpenSearch Serverless in the Canada (Central) region. OpenSearch Serverless is a serverless deployment option for Amazon OpenSearch Service that makes it simple to run search and analytics workloads without the complexities of infrastructure management. OpenSearch Serverless automatically provisions and scales resources to provide consistently fast data ingestion rates and millisecond response times during changing usage patterns and application demand. |
Amazon RDS for MySQL supports new minor version 8.0.37
Amazon Relational Database Service (Amazon RDS) for MySQL now supports MySQL minor version 8.0.37. We recommend that you upgrade to the latest minor versions to fix known security vulnerabilities in prior versions of MySQL, and to benefit from the bug fixes, performance improvements, and new functionality added by the MySQL community. Learn more about the enhancements in RDS for MySQL 8.0.37 in the Amazon RDS user guide. |
AWS B2B Data Interchange announces automated 999 acknowledgements for healthcare transactions
AWS B2B Data Interchange now automatically generates 999 functional acknowledgements to confirm receipt of individual X12 electronic data interchange (EDI) healthcare transactions and to report errors. This launch helps you maintain HIPAA compliance while automating delivery of 999 acknowledgements to trading partners that require them. This launch adds to AWS B2B Data Interchange’s existing support for automated TA1 acknowledgements. |
Amazon RDS announces integration with AWS Secrets Manager in the AWS GovCloud (US) Regions
Amazon RDS now supports integration with AWS Secrets Manager in the AWS GovCloud (US) Regions to streamline how you manage your master user password for your RDS database instances. With this feature, RDS fully manages the master user password and stores it in AWS Secrets Manager whenever your RDS database instances are created, modified, or restored. The new feature supports the entire lifecycle maintenance for your RDS master user password including regular and automatic password rotations; removing the need for you to manage rotations using custom Lambda functions. |
Amazon S3 Replication Time Control is now available in the AWS GovCloud (US) Regions
Amazon S3 Replication Time Control (S3 RTC), a feature of S3 Replication that provides a predictable replication time backed by a Service Level Agreement (SLA), is now available in the AWS GovCloud (US) Regions. |
Amazon SageMaker JumpStart now provides granular access control for foundation models
Starting today, enterprise admins using Amazon SageMaker JumpStart can easily configure granular access control for foundation models (FM) that are discoverable and accessible to users within their organization. Amazon SageMaker JumpStart is a machine learning (ML) hub that offers pretrained models and built-in algorithms to help you quickly get started with ML. |
Amazon EC2 macOS AMIs are now available on AWS Systems Manager Parameter Store
Starting today, customers can reference the latest macOS AMIs via public parameters on the AWS Systems Manager Parameter Store. With this functionality, customers can query the public parameters to retrieve the latest macOS imageIDs, ensure that new EC2 Mac instances are launched with the latest macOS versions, and display a complete list of all available public parameter macOS AMIs. Public parameters are available for both x86 and ARM64 macOS AMIs and can be integrated with customers’ existing AWS CloudFormation templates. |
AWS Billing and Cost Management now provides Data Exports for Cost Optimization Hub
Data Exports for Cost Optimization Hub now enables customers to export their cost optimization recommendations to Amazon S3. Cost Optimization Hub recommendations are consolidated from over 15 types of AWS cost optimization recommendations, such as EC2 instance rightsizing, Graviton migration, and Savings Plan purchases across their AWS accounts and AWS Regions. Exports are delivered on a daily basis to Amazon S3 in Parquet or CSV format. Learn more about Data Exports for Cost Optimization Hub exports in the Data Exports User Guide and in the Data Exports product details page. You can also learn more about Cost Optimization Hub in the Cost Optimization Hub User Guide. Get started by visiting the “Data Exports” or “Cost Optimization Hub” features in the AWS Billing and Cost Management console and creating an export of the “Cost Optimization Recommendations” table. |
AWS Lambda now supports IPv6 for outbound connections in VPC in the AWS GovCloud (US) Regions
AWS Lambda now allows Lambda functions to access resources in dual-stack VPC (outbound connections) over IPv6 in the AWS GovCloud(US) Regions. With this launch, Lambda enables you to scale your application without being constrained by the limited number of IPv4 addresses in your VPC, and to reduce costs by minimizing the need for translation mechanisms. |
AWS Billing and Cost Management now provides Data Exports for FOCUS 1.0 (Preview)
Data Exports for FOCUS 1.0 now enables customers to export their cost and usage data with the FOCUS 1.0 schema to Amazon S3. This feature is in preview. FOCUS is a new open-source cloud billing data specification that provides standardization to simplify cloud financial management across multiple sources. Data Exports for FOCUS 1.0 includes several AWS-specific columns, such as usage types and cost categories, and delivers exports on a daily basis to Amazon S3 as Parquet or CSV files. |
Amazon Redshift Query Editor V2 is now available in AWS Canada (Calgary) region
You can now use the Amazon Redshift Query Editor V2 with Amazon Redshift in the AWS Canada (Calgary) region. Amazon Redshift Query Editor V2 makes data in your Amazon Redshift data warehouse and data lake more accessible with a web-based tool for SQL users such as data analysts, data scientists, and database developers. With Query Editor V2, users can explore, analyze, and collaborate on data. It reduces the operational costs of managing query tools by providing a web-based application that allows you to focus on exploring your data without managing your infrastructure. |
Default Role in CodeCatalyst Environments
Today Amazon CodeCatalyst announces support for adding a default IAM role to an environment. |
Amazon Chime SDK meetings is now available in the Africa (Cape Town) Region
Amazon Chime SDK now offers WebRTC meetings with API endpoints in the Africa (Cape Town) Region. With this release, Amazon Chime SDK developers can add one-to-one and group meetings with real-time audio and video to web and mobile applications from the Africa (Cape Town) Region. This release also includes the ability to connect clients to audio and video media hosted in the Africa (Cape Town) Region. |
Amazon SageMaker HyperPod now supports configurable cluster storage
Today, AWS announces the general availability of configurable cluster storage for SageMaker HyperPod cluster instances, which enables customers to provision additional storage for model development. This launch allows you to centrally automate the provisioning and management of additional Elastic Block Store (EBS) volumes for your cluster instances. With configurable cluster storage, you can easily integrate additional storage capacity across all your cluster instances, empowering you to customize your persistent cluster environment to meet the unique demands of your distributed training workloads. |
Record individual participants with Amazon IVS Real-Time Streaming
Amazon Interactive Video Service (Amazon IVS) Real-Time Streaming enables you to build real-time interactive video experiences. With individual participant recording, you can now record each live stream participant’s video or audio to Amazon Simple Storage Service (Amazon S3). |
Amazon RDS for SQL Server supports up to 64TiB and 256,000 IOPS with io2 Block Express volumes
Amazon RDS for SQL Server now offers enhanced storage and performance capabilities, supporting up to 64TiB of storage and 256,000 I/O operations per seconds (IOPS) with io2 Block Express volumes. This represents an improvement from the previous limit of 16 TiB and 64,000 IOPS with IO2 Block Express. These enhancements enable transactional databases and data warehouses to handle larger workloads on a single Amazon RDS for SQL Server database instance, eliminating the need to shard data across multiple instances. |
Anthropic's Claude 3.5 Sonnet model now available in Amazon Bedrock
Anthropic’s Claude 3.5 Sonnet foundation model is now generally available in Amazon Bedrock. Anthropic’s most intelligent model to date, Claude 3.5 Sonnet, sets a new industry standard for intelligence. The model outperforms other generative AI models in the industry as well as Anthropic’s previously most intelligent model, Claude 3 Opus, on a wide range of evaluations, all while being one-fifth of the cost of Opus. You can now get intelligence better than Claude 3 Opus, at the same cost of Anthropic’s original Claude 3 Sonnet model. |
Amazon RDS for Oracle now supports Oracle Multitenant in the AWS GovCloud (US) Regions
Amazon Relational Database Service (Amazon RDS) for Oracle now supports the Oracle Multitenant configuration on Oracle Database versions 19c and 21c running Oracle Enterprise Edition or Standard Edition 2 in the AWS GovCloud (US) Regions. With this release, the Amazon RDS for Oracle DB instance can operate as a multitenant container database (CDB) hosting one or more pluggable databases (PDBs). A PDB is a set of schemas, schema objects, and non-schema objects that logically appears to a client as a non-CDB. |
Amazon Bedrock now supports compressed embeddings from Cohere Embed
Amazon Bedrock now supports compressed embeddings (int8 and binary) from the Cohere Embed model, enabling developers and businesses to build more efficient generative AI applications without compromising on performance. Cohere Embed is a leading text embedding model. It is most frequently used to power Retrieval-Augmented Generation (RAG) and semantic search systems. |
AWS CodeArtifact now supports Cargo, the Rust package manager
Today, AWS announces the general availability of Cargo support in CodeArtifact. Crates, which are used to distribute Rust libraries, can now be stored in CodeArtifact. |
AWS Compute Optimizer supports rightsizing recommendations for Amazon RDS MySQL and RDS PostgreSQL
AWS Compute Optimizer now provides recommendations for Amazon RDS MySQL and RDS PostgreSQL DB instances and storage. These recommendations help you identify idle databases and choose the optimal DB instance class and provisioned IOPS settings, so you can reduce costs for over-provisioned workloads and increase the performance of under-provisioned workloads. |
Amazon OpenSearch Service now supports JSON Web Token (JWT) authentication and authorization
Amazon OpenSearch Service now supports JSON Web Token (JWT) that enables you to authenticate and authorize users without having to provide any credentials or use internal user database. JWT support also makes it easy for customers to integrate with identity provider of their choice and isolate tenants in a multi-tenant application. |
Amazon SageMaker now offers a fully managed MLflow Capability
Amazon SageMaker now offers a fully managed MLflow capability. Data scientists can use familiar MLflow constructs to organize, track, and analyze ML experiments and administrators can setup MLflow with better scalability, availability, and security. |
AWS Glue adds additional 13 new transforms including flag duplicates
AWS Glue now offers 13 new built-in transforms: Flag duplicates in column, Format Phone Number, Format case, Fill with mode, Flag duplicate rows, Remove duplicates, Month name, Is even, Cryptographic Hash, Decrypt, Encrypt, Int to IP and IP to int. AWS Glue is a serverless data integration service that makes it easy for analytics users to discover, prepare, move, and integrate data from multiple sources. With these new transform, ETL developers can quickly build more sophisticated data pipelines without having to write custom code for these common transform tasks. |
Announcing support for Autodesk 3ds Max Usage-Based Licensing in AWS Deadline Cloud
The AWS Deadline Cloud Usage-Based Licensing (UBL) server now offers on-demand licenses for Autodesk 3ds Max, a popular software for 3D modeling, animation, and digital imagery. This addition joins other supported digital content creation tools such as Autodesk Arnold, Autodesk Maya®, Foundry Nuke®, and SideFX® Houdini. With Deadline Cloud UBL, you only pay for use of the software during the processing of jobs. |
AWS Elemental MediaConnect adds source stream monitoring
AWS Elemental MediaConnect now provides information about the incoming transport stream and its program media. You can view transport stream information such as program numbers, stream types, codecs, and packet identifiers (PIDs) for video, audio, and data streams in the console or via the MediaConnect API. With this new feature you can more accurately identify and resolve issues, minimizing disruptions to your live broadcasts. |
Amazon CodeCatalyst now supports GitHub Cloud and Bitbucket Cloud with Amazon Q
Amazon CodeCatalyst now supports the use of source code repositories hosted in GitHub Cloud and Bitbucket Cloud with Amazon Q for feature development. Customers can now assign issues in CodeCatalyst to Amazon Q and direct it to work with source code hosted in GitHub Cloud and Bitbucket Cloud. This capability is available in US West (Oregon). There is no change to pricing. For more information, see the documentation or visit the Amazon CodeCatalyst website. |
Amazon Connect Cases is now available in additional Asia Pacific regions
Amazon Connect Cases is now available in the Asia Pacific (Seoul) and Asia Pacific (Tokyo) AWS regions. Amazon Connect Cases provides built-in case management capabilities that make it easy for your contact center agents to create, collaborate on, and quickly resolve customer issues that require multiple customer conversations and follow-up tasks. |
Amazon Redshift Query Editor V2 now supports 100MB file uploads
Amazon Redshift Query Editor V2 now supports uploading local files up to 100MB in size when loading data into your Amazon Redshift databases. This increased file size limit provides more flexibility for ingesting larger datasets directly from your local environment. |
Amazon DataZone launches custom blueprint configurations for AWS services
Amazon DataZone launches custom blueprint configurations for AWS services allowing customers to optimize resource usage and costs by using existing AWS Identity and Access Management (IAM) roles and/or AWS services, such as Amazon S3. Amazon DataZone is a data management service for customers to catalog, discover, share, and govern data at scale across organizational boundaries with governance and access controls. |
Amazon EC2 C7g and R7g instances are now available in additional regions
Starting today, Amazon Elastic Compute Cloud (Amazon EC2) C7g and R7g instances are available are now available in Europe (Milan), Asia Pacific (Hong Kong) and South America (São Paulo) Regions. These instances are powered by AWS Graviton3 processors that provide up to 25% better compute performance compared to AWS Graviton2 processors, and built on top of the the AWS Nitro System, a collection of AWS designed innovations that deliver efficient, flexible, and secure cloud services with isolated multi-tenancy, private networking, and fast local storage. Amazon EC2 C7g and R7g are available in the following AWS Regions: US East (Ohio, N. Virginia), US West (N. California, Oregon), Canada (Central), Asia Pacific (Hyderabad, Hong Kong, Mumbai, Seoul, Singapore, Sydney, Tokyo), China (Beijing, Nginxia), Europe (Frankfurt, Ireland, London, Milan, Spain, Stockholm) and South America (São Paulo). |
CodeCatalyst allows customers to use Amazon Q Developer to choose a blueprint
Today, AWS announces the general availability of a new capability of Amazon Q Developer in Amazon CodeCatalyst. Customers can now use Amazon Q to help them pick the best blueprint for their needs when getting started with a new project or on an existing project. Before, customers had to read through the descriptions of available blueprints to try and pick the best match. Now customers can describe what they want to create and receive direct guidance about which blueprint to pick for their needs. Amazon Q will also create an issue in the project for each requirement that isn’t included in the resources created by the blueprint. Users can then customize their project by assigning those issues to developers to add that functionality. They can even choose to assign these issues to Amazon Q itself, which will then attempt to create code to solve the problem. |
AWS Glue Usage Profiles is now generally available
Today, AWS announces general availability of AWS Glue Usage Profiles, a new cost control capability that allows admins to set preventatives controls and limits over resources consumed by their Glue jobs and Notebook sessions. With AWS Glue Usage Profiles, admins can create different cost profiles for different classes of users. Each profile is a unique set of parameters that can be assigned to different types of users. For example, a cost profile for data engineer working on production pipeline could have unrestricted number of workers whereas the cost profile for a test user could have a restricted number of workers. |
Amazon MWAA now supports Custom Web Server URLs
Amazon Managed Workflows for Apache Airflow (MWAA) now supports custom domain names for the Airflow web server, simplifying access to the Airflow user interface. |
Amazon EC2 D3 instances are now available in Europe (Paris) region
Starting today, Amazon EC2 D3 instances, the latest generation of the dense HDD-storage instances, are available in the Europe (Paris) region. |
Amazon OpenSearch Serverless now available in South America (Sao Paulo) region
We are excited to announce the availability of Amazon OpenSearch Serverless in the South America (Sao Paulo) region. OpenSearch Serverless is a serverless deployment option for Amazon OpenSearch Service that makes it simple to run search and analytics workloads without the complexities of infrastructure management. OpenSearch Serverless automatically provisions and scales resources to provide consistently fast data ingestion rates and millisecond response times during changing usage patterns and application demand. |
Introducing Maven, Python, and NuGet support in Amazon CodeCatalyst package repositories
Today, AWS announces the support for Maven, Python, and NuGet package formats in Amazon CodeCatalyst package repositories. CodeCatalyst customers can now securely store, publish, and share Maven, Python, and NuGet packages, using popular package managers such as mvn, pip, nuget and more. Through your CodeCatalyst package repositories, you can also access open source packages from from 6 additional public package registries. Your packages remain available for your development teams, should public packages and registries become unavailable from other service providers. |
Amazon Kinesis Video Streams is now available in AWS GovCloud (US) Regions
Amazon Kinesis Video Streams is now available in AWS GovCloud (US-East and US-West) Regions. Amazon Kinesis Video Streams makes it easy to securely stream video from connected devices to AWS for storage, analytics, machine learning (ML), playback, and other processing. Amazon Kinesis Video Streams automatically provisions and elastically scales all the infrastructure needed to ingest streaming video data from millions of devices. It durably stores, encrypts, and indexes video data in your streams, and allows you to access your data through easy-to-use APIs. Kinesis Video Streams enables you to playback video for live and on-demand viewing, and quickly build applications that take advantage of computer vision and video analytics through integration with Amazon Rekognition Video and Amazon Sagemaker. For more information, please visit the Amazon Kinesis Video Streams product page, and see the AWS region table for complete regional availability information. Note that Amazon Kinesis Video Streams with WebRTC is not yet available in AWS GovCloud (US) Regions. |
Amazon Redshift announces support for VARBYTE 16MB data type
Amazon Redshift has extended the VARBYTE data type from the current 1,024,000 bytes maximum size (see the VARBYTE What’s New announcement from December 2021) to 16,777,216 bytes max size. VARBYTE is a variable size data type for storing and representing variable-length binary strings. With this announcement, Amazon Redshift will support all existing VARBYTE functionality with 16MB VARBYTE values. VARBYTE data type can now ingest data larger than 1,024,000 bytes from Parquet, CSV and text file formats. The default size for a VARBYTE(n) column (if n is not specified) remains 64,0000 bytes. |
Amazon now offers a capability to analyze issues and recommend granular tasks
Amazon CodeCatalyst now offers a new capability powered by Amazon Q to help customers analyze issues and recommend granular tasks. These tasks can then be individually assigned to users or to Amazon Q itself, helping you accelerate work. Before, customers could create issues to track work that needs to be done on a project and they needed to manually create more granular tasks that can be assigned to others on the team. Now customers can ask Amazon Q to analyze an issue for complexity and suggest ways of breaking up the work into individual tasks. |
AWS Glue serverless Spark UI now supports rolling log files
Today, AWS announces rolling log file support for AWS Glue serverless Apache Spark UI. Serverless Spark UI enable you to get detailed information about your AWS Glue Spark jobs. With rolling log support, you can use AWS Glue serverless Spark UI to see detailed information for long-running batch or streaming jobs. Rolling log files enables you to monitor and debug large batch and streaming Glue jobs. |
Amazon CodeCatalyst now offers the ability to link issues
Amazon CodeCatalyst now offers the ability to link an issue to other issues. This allows customers to link issues in CodeCatalyst as blocked by, duplicate of, related to, or blocks another issue. |
Amazon RDS for MariaDB supports minors 10.11.8, 10.6.18, 10.5.25, 10.4.34
Amazon Relational Database Service (Amazon RDS) for MariaDB now supports MariaDB minor versions 10.11.8, 10.6.18, 10.5.25, and 10.4.34. We recommend that you upgrade to the latest minor versions to fix known security vulnerabilities in prior versions of MariaDB, and to benefit from the bug fixes, performance improvements, and new functionality added by the MariaDB community. |
AWS Systems Manager now supports additional Rocky, Oracle, and Alma Linux versions
AWS Systems Manager now supports instances running Rocky Linux, Alma Linux, and Oracle Linux versions 8.8 and 8.9. Systems Manager customers running these operating systems versions now have access to all AWS Systems Manager Node Management capabilities, including Fleet Manager, Compliance, Inventory, Hybrid Activations, Session Manager, Run Command, State Manager, Patch Manager, and Distributor. For a full list of supported operating systems and machine types for AWS Systems Manager, see the user guide. Patch Manager enables you to automatically patch instances with both security-related and other types of updates across your infrastructure for a variety of common operating systems, including Windows Server, Amazon Linux, and Red Hat Enterprise Linux (RHEL). For a full list of supported operating systems for AWS Systems Manager Patch Manager, see the Patch Manager prerequisites user guide page. |
AWS KMS now supports Elliptic Curve Diffie-Hellman (ECDH) key agreement
The Elliptic Curve Diffie-Hellman (ECDH) key agreement enables two parties to establish a shared secret over a public channel. With this new feature, you can take another party’s public key and your own elliptic-curve KMS key that’s inside AWS Key Management Service (KMS) to derive a shared secret within the security boundary of FIPS 140-2 validated KMS hardware security module (HSM). This shared secret can then be used to derive a symmetric key to encrypt and decrypt data between the two parties using a symmetric encryption algorithm within your application. |
AWS CodeBuild now supports organization and global GitHub webhooks
AWS CodeBuild now supports organization and global webhooks for GitHub and GitHub Enterprise Server. CodeBuild webhooks automatically detect changes in your repositories and trigger new builds whenever webhook events are received. These events include GitHub Actions workflow run, commit push, release, and pull request. |
Amazon EC2 C7i-flex instances are now available in US East (Ohio) Region
Starting today, Amazon Elastic Compute Cloud (Amazon EC2) C7i-flex instances that deliver up to 19% better price performance compared to C6i instances, are available in US East (Ohio) region. C7i-flex instances expand the EC2 Flex instances portfolio to provide the easiest way for you to get price performance benefits for a majority of compute intensive workloads. The new instances are powered by the 4th generation Intel Xeon Scalable custom processors (Sapphire Rapids) that are available only on AWS, and offer 5% lower prices compared to C7i. |
Amazon RDS for Oracle now supports memory optimized R6i instance types
Starting today, Amazon Relational Database Service (RDS) for Oracle now supports memory optimized R6i instance types featuring up to 8x the RAM per vCPU of the existing R6i instance types to better fit your workloads. Many Oracle database workloads require high memory, storage, and I/O bandwidth but can safely reduce the number of vCPUs without impacting application performance. Memory optimized R6i instances come in various configurations from 2 vCPUs to 48 vCPUs, memory from 32 GiB to 1024 GiB, and up to 64:1 memory-to-vCPU ratio. These configurations will allow you to right-size instances for your Oracle workloads. |
Amazon DataZone introduces advanced search filtering capabilities
Amazon DataZone is a fully managed data management service to catalog, discover, analyze, share, and govern data between data producers and consumers in a customer’s organization. Amazon DataZone introduces advanced search filtering capabilities in its business data catalog. This include improved rendering of glossary term facets, the ability to switch between 'AND' and 'OR' logic for filtering, and clear summaries of selected filters, making data discovery more efficient and intuitive. |
Amazon SES now publishes email sending events to EventBridge
Today, Amazon Simple Email Service (SES) released a new way to track email sending activity by delivering sending events to Amazon EventBridge. Customers can now select EventBridge as a delivery destination for configuration sets, making it easier to route event notifications such as bounces and complaints to any service supported by EventBridge. Customers can use EventBridge rules to filter events by selecting information of interest and building workflows or data stores to process and store events. This information can be used for use cases such as contact list updates and deliverability analytics. This update makes it easier to capture and process SES sending events for custom workflow processing. |
AWS IoT TwinMaker announces Dynamic Scene feature
AWS IoT TwinMaker makes it easier to create digital twins of real-world systems such as buildings, factories, and industrial equipment. Today, we are announcing the Dynamic Scene feature, which allows for the updating and rendering of 3D objects dynamically based on TwinMaker Entities and Knowledge Graph queries. This feature will make it easier for customers to create and update 3D scenes using Knowledge Graph queries.
|
Amazon CodeCatalyst now supports managing billing and access with a single AWS account
Today, Amazon CodeCatalyst announces support for customers who want to use the same AWS resources for billing and managing single sign-on access for multiple spaces. You can now connect multiple CodeCatalyst spaces to a single AWS Identity Center application for managing access to CodeCatalyst spaces for your users. You can also connect multiple CodeCatalyst spaces to a single AWS account for billing purposes. |
Amazon Bedrock now available in the (London), (São Paulo), and Canada (Central) regions
Beginning today, customers can use Amazon Bedrock in the Europe (London), South America (São Paulo), and Canada (Central) regions to easily build and scale generative AI applications using a variety of foundation models (FMs) as well as powerful tools to build generative AI applications. |
Cross-region failover now available in AWS Elemental MediaPackage
Starting today, you can enable your content delivery network (CDN) to transparently failover between two or more AWS Elemental MediaPackage Live origins in different AWS regions. This resilience capability uses the new support for CMAF Ingest (Interface-1) and the force-endpoint error configuration option to enable CDN failover to a backup origin in case of stale or incomplete primary stream. This capability of MediaPackage is easy to use in combination with AWS Elemental MediaLive or AWS Elemental Live encoders, and Amazon CloudFront. |
Amazon DataZone achieves SOC, ISO, and CSTAR certifications
Amazon DataZone, a fully managed data management service for cataloging, discovering, analyzing, sharing, and governing data within an organization, has achieved key milestones in security and compliance certifications. These accomplishments reflect an ongoing effort to expand compliance programs to support customers' architectural and regulatory needs. |
Amazon EKS open sources Pod Identity agent
Today, Amazon EKS open sourced the Pod Identity agent, providing customers with more options to package and deploy the agent into EKS clusters. Pod Identity is a feature of EKS that simplifies the process for cluster administrators to configure Kubernetes applications with AWS IAM permissions. A prerequisite for using the Pod Identity feature is running the Pod Identity agent on the cluster’s worker nodes. With the Pod Identity agent being open sourced, you can now build the agent on your own. This gives you various options to package and deploy the agent, enabling you to align with your organization’s deployment practices. |
Announcing the Access Console for NICE DCV
AWS has launched the NICE DCV Access Console, a new web-based solution for administrators and end users to more easily manage their remote desktop sessions. NICE DCV is a high-performance remote display protocol that allows users to securely connect to remote desktops from any device. Customers can now efficiently deploy an out-of-the-box solution that centralizes their NICE DCV session management. |
AWS Launch Wizard now supports resource and tag-based access controls
AWS Launch Wizard now offers resource and tag-based access controls for improved governance and security. With today’s launch, you can add tags to your AWS Launch Wizard resources and define AWS Identity and Access Management (IAM) policies to specify fine-grained permissions based on resource IDs and tags. Similarly, for resource-level access controls, you can configure IAM policies through Amazon Resource Names (ARNs) or wildcards, and specify the users, roles and actions that are permitted on the resources. |
Amazon MQ is now available in AWS Canada West (Calgary) region
Amazon MQ is now available in the AWS Canada West (Calgary) region. With this launch, Amazon MQ is now available in a total of 33 regions. |
Amazon ElastiCache Serverless now supports snapshot and restore for Memcached
Amazon ElastiCache Serverless now supports the ability to automatically backup and restore your Memcached data. You can now create a snapshot of your serverless Memcached cache and use it to restore the cache or seed data into a new serverless cache, enhancing data resilience and recovery. |
AWS User Notifications is now available in Canada West (Calgary) Region
AWS User Notifications is now available in Canada West (Calgary) Region. User Notifications enables you to view notifications across accounts, regions, and services in a Console Notifications Center, and configure delivery channels where you want to receive these notifications, like email, AWS Chatbot, and AWS Console Mobile App. You can centrally setup and view notifications from AWS services, such as AWS Health events, Amazon CloudWatch alarms, or Amazon EC2 instance state changes, in a consistent, human-readable format. Notifications include URLs to direct you to resources on the AWS Console, where you can take take additional actions. With User Notifications, you specify which events you want to be notified about, and in which channels. Any user with User Notifications permissions can enable notifications for use cases like CloudWatch alarm state changes and Health events. For example, email jane@example.com whenever an EC2 instance in region us-east-1 or ca-west-1 with tag ‘production’ changes state to “stopped”. In addition, you can aggregate multiple events into a single notification for an easy top-level view. Configuring and viewing notifications in the Console Notifications Center is offered at no additional cost. |
Amazon OpenSearch Ingestion adds support for customer managed VPC interface endpoints
Amazon OpenSearch Ingestion now allows you to create VPC interface endpoints to securely connect your VPC to Amazon OpenSearch Ingestion pipeline via AWS PrivateLink. This allows greater control in meeting your network and security posture by explicitly restricting VPC resource access to only entities that need it. Furthermore, you can now connect multiple VPCs to a single Amazon OpenSearch Ingestion pipeline in an AWS account allowing network architectures for centralized logging. With customer-managed VPC endpoints, your VPC resources can communicate with Amazon OpenSearch Ingestion within the AWS network, which helps you meet your compliance and regulatory requirements to limit public internet connectivity. You can now use Amazon VPC APIs to connect your VPCs to Amazon OpenSearch Ingestion pipelines, giving you access to advanced VPC features like identity-based policies and alerts for endpoint events. |
AWS Mainframe Modernization Application Testing is now generally available
We are excited to announce the general availability of AWS Mainframe Modernization Application Testing, an AWS Mainframe Modernization service feature that automates functional equivalence testing for mainframe application modernization and migration to AWS, and regression testing. |
Amazon DynamoDB supports pausing global table replication in the AWS GovCloud (US) Regions
Amazon DynamoDB now supports an AWS Fault Injection Service (FIS) action to pause replication for global tables in the GovCloud (US) Regions. FIS is a fully managed service for running controlled fault injection experiments to improve an application’s performance, observability, and resilience. Global tables replicate your Amazon DynamoDB tables automatically across your choice of AWS Regions to achieve fast, local read and write performance. Customers can use the new FIS action to observe how their application responds to a pause in regional replication, and tune their monitoring and recovery process to improve resiliency and application availability. |
Amazon RDS for SQL Server Supports Minor Version 2022 CU13
A new minor version of Microsoft SQL Server is now available on Amazon RDS for SQL Server, providing performance enhancements and security fixes. Amazon RDS for SQL Server now supports the latest minor version of SQL Server 2022 across the Express, Web, Standard, and Enterprise editions. |
Productionize Foundation Models from SageMaker Canvas
Amazon SageMaker Canvas now supports deploying Foundation Models (FMs) to SageMaker real-time inference endpoints, allowing you to bring generative AI capabilities into production and consume them outside the Canvas workspace. SageMaker Canvas is a no-code workspace that enables analysts and citizen data scientists to generate accurate ML predictions and use generative AI capabilities. |
Research and Engineering Studio on AWS, Version 2024.06 now available
Today we’re excited to announce the release of Research and Engineering Studio (RES) on AWS Version 2024.06. This latest release brings support for Ubuntu 22.04, the ability to designate users of your RES environment as project owners, and a new demo experience. |
Amazon OpenSearch Serverless now supports Internet Protocol Version 6 (IPv6)
We are excited to announce that Amazon OpenSearch Serverless now offers customers the option to use Internet Protocol version 6 (IPv6) addresses for the endpoint of your OpenSearch Serverless collection. Customers moving to IPv6 can simplify their network stack by enabling their OpenSearch Serverless endpoints with both IPv4 and IPv6 addresses. The continued growth of the internet is exhausting available Internet Protocol version 4 (IPv4) addresses. IPv6 increases the number of available addresses by several orders of magnitude, so customers will no longer need to manage overlapping address spaces in their VPCs. Customers can also standardize their applications on the new version of Internet Protocol by moving their OpenSearch Serverless Endpoints to IPv6 only. OpenSearch Serverless is a serverless deployment option for Amazon OpenSearch Service that makes it simple to run search and analytics workloads without the complexities of infrastructure management. OpenSearch Serverless’ compute capacity used for data ingestion, search, and query is measured in OpenSearch Compute Units (OCUs). |
Amazon SES now provides custom values in the Feedback-ID header
Today, Amazon Simple Email Service (SES) released a new feature to give customers control over parts of the auto-generated Feedback-ID header in messages sent through SES. This feature provides additional details to help customers identify deliverability trends. Customers can use products like PostMaster Tools by Gmail to see complaint rates by identifiers of their choice, such as sender identity or campaign ID. This makes it easier to track deliverability performance associated with independent workloads and campaigns, and accelerates troubleshooting when diagnosing complaint rates. |
Amazon Connect now provides color coding for shift activities in agent scheduling
Amazon Connect now provides color coding for shift activities in agent scheduling, enabling a simplified experience for contact center managers and agents. With this launch, you can now configure colors for agent shift activities, such as red for breaks and lunches, green for team meetings, and purple for trainings. With customizable colors, managers can quickly see how different activities are placed in agent schedules (e.g. is more than half the team doing a training at the same time, does the team meeting include everyone, etc.). This launch also simplifies the experience for agents as they can easily understand their schedule at-a-glance for the week without having to read through each scheduled activity. Customizable colors make day-to-day schedule management more efficient for managers and agents. |
AWS CloudTrail Lake announces AI-powered natural language query generation (preview)
AWS announces generative AI-powered natural language query generation in AWS CloudTrail Lake (preview), enabling you to simply analyze your AWS activity events without having to write complex SQL queries. Now you can ask questions in plain English about your AWS API and user activity, such as “How many errors were logged during the past week for each service and what was the cause of each error?” or “Show me all users who logged in using console yesterday”, and AWS CloudTrail will generate a SQL query, which you can run as is or fine-tune to meet your use case. |
AWS Audit Manager generative AI best practices framework now includes Amazon SageMaker
Available today, the AWS Audit Manager generative AI best practices framework now includes Amazon SageMaker in addition to Amazon Bedrock. Customers can use this prebuilt standard framework to gain visibility into how their generative AI implementation on SageMaker or Amazon Bedrock follows AWS recommended best practices and start auditing their generative AI usage and automating evidence collection. The framework provides a consistent approach for tracking AI model usage and permissions, flagging sensitive data, and alerting on issues. |
AWS Cloud WAN introduces Service Insertion to simplify security inspection at global scale
Today AWS announces Service Insertion, a new feature of AWS Cloud WAN that simplifies the integration of security and inspection services into the Cloud WAN based global networks. Using this feature, you can easily steer your global network traffic between Amazon VPCs (Virtual Private Cloud), AWS Regions, on-premises locations, and Internet via security appliances or inspection services using central Cloud WAN policy or the AWS management console. |
AWS IAM Access Analyzer now offers policy checks for public and critical resource access
AWS Identity and Access Management (IAM) Access Analyzer guides customers toward least privilege by providing tools to set, verify, and refine permissions. IAM Access Analyzer now extends custom policy checks to proactively detect nonconformant updates to policies that grant public access or grant access to critical AWS resources ahead of deployments. Security teams can use these checks to streamline their IAM policy reviews, automatically approving policies that conform with their security standards and inspecting more deeply when policies don’t conform. Custom policy checks use the power of automated reasoning to provide the highest levels of security assurance backed by mathematical proof. |
AWS Identity and Access Management now supports passkey as a second authentication factor
AWS Identity and Access Management (IAM) now supports passkeys for multi-factor authentication to provide easy and secure sign-ins across your devices. Based on FIDO standards, passkeys use public key cryptography, which enables strong, phishing-resistant authentication that is more secure than passwords. IAM now allows you to secure access to AWS accounts using passkeys for multi-factor authentication (MFA) with support for built-in authenticators, such as Touch ID on Apple MacBooks and Windows Hello facial recognition on PCs. Passkeys can be created with a hardware security key or with your chosen passkey provider using your fingerprint, face, device PIN, and they are synced across your devices to sign-in with AWS.
|
AWS Private CA introduces Connector for SCEP for mobile devices (Preview)
AWS Private Certificate Authority (AWS Private CA) launches the Connector for SCEP, which lets you use a managed and secure cloud certificate authority (CA) to enroll mobile devices securely and at scale. Simple Certificate Enrollment Protocol (SCEP) is a protocol widely adopted by mobile device management (MDM) solutions for getting digital identity certificates from a CA and enrolling corporate-issued and bring-your-own-device (BYOD) mobile devices. With the Connector for SCEP, you use a managed private CA with a managed SCEP solution to reduce operational costs, simplify processes, and optimize your public key infrastructure (PKI). Additionally, the Connector for SCEP lets you use AWS Private CA with industry-leading SCEP-compatible MDM solutions including Microsoft Intune and Jamf Pro. |
Detect malware in new object uploads to Amazon S3 with Amazon GuardDuty
Today, Amazon Web Services (AWS) announces the general availability of Amazon GuardDuty Malware Protection for Amazon S3. This expansion of GuardDuty Malware Protection allows you to scan newly uploaded objects to Amazon S3 buckets for potential malware, viruses, and other suspicious uploads and take action to isolate them before they are ingested into downstream processes. |
AWS IAM Access Analyzer now offers recommendations to refine unused access
AWS Identity and Access Management (IAM) Access Analyzer guides customers toward least privilege by providing tools to set, verify, and refine permissions. IAM Access Analyzer now offers actionable recommendations to guide you to remediate unused access. For unused roles, access keys, and passwords, IAM Access Analyzer provides quick links in the console to help you delete them. For unused permissions, IAM Access Analyzer reviews your existing policies and recommends a refined version tailored to your access activity.
|
Amazon ECS on AWS Fargate now allows you to encrypt ephemeral storage with customer-managed KMS keys
Amazon Elastic Container Service (Amazon ECS) and AWS Fargate now allow you to use customer managed keys in AWS Key Management Service (KMS) to encrypt data stored in Fargate task ephemeral storage. Ephemeral storage for tasks running on Fargate platform version 1.4.0 or higher is encrypted with AWS owned keys by default. This feature allows you to add a self-managed security layer which can help you meet compliance requirements. |
Amazon CloudWatch Application Signals, for application monitoring (APM) is generally available
Today, AWS announces the general availability of Amazon CloudWatch Application Signals, an OpenTelemetry (OTeL) compatible application performance monitoring (APM) feature in CloudWatch, that makes it easy to automatically instrument and track application performance against their most important business or service level objectives (SLOs) for applications on AWS. With no manual effort, no custom code, and no custom dashboards, Application Signals provides service operators with a pre-built, standardized dashboard showing the most important metrics for application performance – volume, availability, latency, faults, and errors – for each of their applications on AWS. |
Amazon RDS for PostgreSQL announces Extended Support minor 11.22-RDS.20240509
Amazon Relational Database Service (RDS) for PostgreSQL announces Amazon RDS Extended Support minor version 11.22-RDS.20240509. We recommend that you upgrade to this version to fix known security vulnerabilities and bugs in prior versions of PostgreSQL. |
Amazon Security Lake is now available in the AWS GovCloud (US) Regions
Amazon Security Lake is now available in the AWS GovCloud (US) Regions. You can now centralize security data from AWS environments, SaaS providers, on premises, and cloud sources into a purpose-built data lake stored in your Amazon S3 account. |
AWS CloudFormation accelerates dev-test cycle with adjustable timeouts for custom resources
AWS CloudFormation launches a new property for custom resources called ServiceTimeout. This new property allows customers to set a maximum timeout for the execution of the provisioning logic in a custom resource, enabling faster feedback loops in dev-test cycles. |
Amazon EC2 M6in and M6idn instances are now available in Asia Pacific (Mumbai)
Starting today, Amazon Elastic Compute Cloud (Amazon EC2) M6in and M6idn instances are available in AWS Regions Asia Pacific (Mumbai), Canada (Central). These sixth-generation network optimized instances, powered by 3rd Generation Intel Xeon Scalable processors and built on the AWS Nitro System, deliver up to 200Gbps network bandwidth, 2x more network bandwidth, and up to 2x higher packet-processing performance over comparable fifth-generation instances. Customers can use M6in and M6idn instances to scale the performance and throughput of network-intensive workloads such as high-performance file systems, distributed web scale in-memory caches, caching fleets, real-time big data analytics, and Telco applications such as 5G User Plane Function.
|
Amazon CloudWatch announces AI-Powered natural language query generation
Amazon CloudWatch announces the general availability of natural language query generation powered by generative AI for Logs Insights and Metrics Insights. This feature enables you to quickly generate queries in context of your logs and metrics data using plain language. By simplifying the query generation process, you can accelerate gathering insights from your observability data without needing extensive knowledge of the query language. |
Amazon Redshift Serverless is now available in the AWS Middle East (UAE) region
Amazon Redshift Serverless, which allows you to run and scale analytics without having to provision and manage data warehouse clusters, is now generally available in the AWS Middle East (UAE) region. With Amazon Redshift Serverless, all users, including data analysts, developers, and data scientists, can use Amazon Redshift to get insights from data in seconds. Amazon Redshift Serverless automatically provisions and intelligently scales data warehouse capacity to deliver high performance for all your analytics. You only pay for the compute used for the duration of the workloads on a per-second basis. You can benefit from this simplicity without making any changes to your existing analytics and business intelligence applications. |
Amazon CodeCatalyst now supports Bitbucket Cloud source code repositories
Amazon CodeCatalyst now supports the use of source code repositories hosted in Bitbucket Cloud in CodeCatalyst projects. This allows customers to use Bitbucket Cloud repositories with CodeCatalyst’s features such as its cloud IDE (Development Environments), view the status of CodeCatalyst workflows back in Bitbucket Cloud, and even block Bitbucket Cloud pull request merges based on the status of CodeCatalyst workflows. |