10/4/2024, 12:00:00 AM ~ 10/7/2024, 12:00:00 AM (UTC)
Recent Announcements
AWS Security Hub launches 7 new security controls
AWS Security Hub has released 7 new security controls, increasing the total number of controls offered to 430. Security Hub now supports controls for new resource types, such as Amazon Simple Storage Service (S3) Multi-Region Access Points and Amazon Managed Streaming for Apache Kafka (MSK) Connect. Security Hub also released new control for Amazon GuardDuty EKS Runtime Monitoring. For the full list of recently released controls and the AWS Regions in which they are available, visit the Security Hub user guide.\n To use the new controls, turn on the standard they belong to. Security Hub will then start evaluating your security posture and monitoring your resources for the relevant security controls. You can use central configuration to do so across all your organization accounts and linked Regions with a single action. If you are already using the relevant standards and have Security Hub configured to automatically enable new controls, these new controls will run without taking any additional action. To get started, consult the following list of resources:
Learn more about Security Hub capabilities and features in the AWS Security Hub user guide
Subscribe to the Security Hub SNS topic to receive notifications about new Security Hub features and controls
Try Security Hub at no cost for 30 days on the AWS Free Tier.
AWS CodePipeline introduces new general purpose compute action
AWS CodePipeline introduces the Commands action that enables you to easily run shell commands as part of your pipeline execution. With the Commands action, you will have access to a secure compute environment backed by CodeBuild to run AWS CLI, third-party tools, or any shell commands. The Commands action runs CodeBuild managed on-demand EC2 compute, and uses an Amazon Linux 2023 standard 5.0 image.\n Previously, if you wanted to run AWS CLI commands, third-party CLI commands, or simply invoke an API, you had to create a CodeBuild project, configure the project with the appropriate commands, and add a CodeBuild action to your pipeline to run the project. Now, you can simply add the Commands action to your pipeline, and define one or more commands as part of the action configuration. Since Commands is like any other CodePipeline action, you can use the standard CodePipeline features of input / output artifacts and output variables. To learn more about using the Commands action in your pipeline, visit our documentation. For more information about AWS CodePipeline, visit our product page. The Commands action is available in all regions where AWS CodePipeline is supported.
Starting today, you can provide Server Name Indication (SNI) with Route 53 Resolver endpoints for DNS-over-HTTPS (DoH), allowing you to specify the target server hostname for DNS query requests from your outbound endpoints to DoH servers that require SNI for TLS validation.\n DoH on Amazon Route 53 Resolver endpoints allows you to encrypt DNS queries that pass through the endpoints and improve privacy by minimizing the visibility of the information exchanged through the queries. With this launch, you can now specify the hostname with your outbound endpoint configuration to perform TLS handshakes for your DNS requests from the outbound endpoints to the DoH server. Enabling SNI validation for your DoH Resolver endpoints also helps you meet regulatory and business compliance requirements, such as those described in the memorandum of the US Office of Management and Budget, where outbound DNS traffic must be be addressed to Cybersecurity and Infrastructure Security Agency (CISA) Protective DNS that require SNI hostname validation for a successful TLS handshake. Resolver endpoints support for DoH with SNI is available in all Regions where Route 53 is available, including the AWS GovCloud (US) Regions. Visit the AWS Region Table to see all AWS Regions where Amazon Route 53 is available. You can get started by using the AWS Console or Route 53 API. For more information, visit the Route 53 Resolver product detail page and service documentation. For details on pricing, visit the pricing page.
Amazon SageMaker JumpStart is now available in the AWS GovCloud (US-West and US-East) Regions
Amazon SageMaker JumpStart is now available in the AWS GovCloud (US) Regions. Public sector customers can easily deploy and fine-tune open-weight models through the SageMaker Python SDK.\n Amazon SageMaker JumpStart is a machine learning (ML) hub that offers hundreds of pre-trained models and built-in algorithms to help you quickly get started with ML. Customers can discover hundreds of open-weight pre-trained models such as Llama and Mistral stored in the AWS infrastructure, fine-tune with their own data, and deploy for cost effective inferencing using SageMaker Python SDK. Amazon SageMaker JumpStart is now Generally Available in the AWS GovCloud (US-West and US-East) Regions. Please note that some models require instances not yet available in GovCloud regions and will be usable after instances become available. To learn more about using SageMaker JumpStart through SageMaker Python SDK, see the SageMaker Python SDK documentation. Available models can also be found in the documentation.
AWS Application Composer is now AWS Infrastructure Composer
AWS Application Composer is now called AWS Infrastructure Composer. The new name emphasizes our capabilities in building infrastructure architectures.\n Since launching at re:Invent ’22, customers have told us how Application Composer has helped accelerate their serverless application architecture design with Application Composer’s simple drag-and-drop interface. Since the initial release, we have expanded our support to any CloudFormation resource, empowering customers to build any required resource architecture. The new AWS Infrastructure Composer name reflects our focus to help customers build any infrastructure with CloudFormation. AWS Infrastructure Composer is available in all commercial regions and the AWS GovCloud (US) Regions.
Amazon Connect can now generate forecast for workloads with as little as one contact
Amazon Connect can now generate forecasts for smaller workloads, with as little as one contact, making it easier for contact center managers to predict demand. This eliminates the need for you to manually adjust historical data to meet minimum data requirements. By reducing minimum data requirements, you can now enable managers to generate forecasts for smaller volume workloads than were previously possible, making it easier to do capacity planning and staffing.\n This feature is available in all AWS Regions where Amazon Connect agent scheduling is available. To learn more about Amazon Connect agent scheduling, click here.
Amazon Connect Contact Lens supports new read-only permissions for reports and dashboards
Amazon Connect Contact Lens now allows users to save and publish reports and dashboards as read-only. By publishing a report as read-only, only the user who created the report or dashboard can edit the report, while still making it visible for others to view or create a copy. For example, a contact center manager can configure a custom read-only dashboard and share it with the supervisors on their team to ensure they monitor the same metrics, while still allowing the supervisors to customize and save their own versions for further analysis.\n This feature is available in all AWS regions where Amazon Connect is offered. To learn more about read only reports, see the Amazon Connect Administrator Guide. To learn more about Amazon Connect, the AWS cloud-based contact center, please visit the Amazon Connect website.
Amazon EC2 now supports Optimize CPUs post instance launch
Amazon EC2 now allows customers to modify an instance’s CPU options after launch. You can now modify the number of vCPUs and/or disable the hyperthreading of a stopped EC2 instance to save on vCPU-based licensing costs. In addition, an instance’s CPU options are now maintained when changing its instance type.\n The Optimize CPUs feature allows customers to disable hyperthreading and reduce the number of vCPUs on an instance, resulting in a high memory to vCPU ratio helping customers save the vCPU-based licensing costs. This is particularly beneficial to customers who Bring-Your-Own-license (BYOL) for commercial database workloads, like Microsoft SQL Server.
This feature is available in all commercial AWS Regions.
To get started, see CPU options in the Amazon EC2 User Guide. To learn more about the new API, visit the Amazon EC2 API Reference.
Amazon Connect now supports multi-day copy and paste of agent schedules
Amazon Connect now supports copying of agent schedules across multiple days, making management of agent schedules more efficient. You can now copy multiple days shifts from one agent to another agent or to the same agent, up to 14 days at a time. For example, if a new agent joins the team mid-month, you can quickly provide them with a schedule by copying up to 14 days of shifts from an existing agent’s schedule. Similarly, if an agent has a flexible working arrangement for a few weeks, you can edit their schedule for the first week and then copy it over to remaining weeks. Multi-day copy of agent schedules improves manager productivity by reducing time spent on managing agent schedules.\n This feature is available in all AWS Regions where Amazon Connect agent scheduling is available. To learn more about Amazon Connect agent scheduling, click here.
Amazon WorkSpaces now supports file transfer between WorkSpaces sessions and local devices
Amazon WorkSpaces is launching support for transferring files between a WorkSpaces Personal session and a local computer. This helps customers to manage and share files seamlessly, increasing their productivity. This is supported on personal WorkSpaces that use the DCV streaming protocol when using the Windows, Linux client applications or web access.\n With this launch, users can streamline their workflows and have easier ways to organize, manage, edit, and share files across their devices and platforms. The files on the WorkSpaces will be saved in a persistent storage folder. Amazon WorkSpaces also offers robust security measures, and administrators can control whether users can upload or download files from WorkSpaces to protect the data security of your organization. This functionality is now available in all the AWS Regions where Amazon WorkSpaces Personal is available. There are no additional WorkSpaces costs for using the file transfer functionality. However, the files uploaded consume user volume that is attached to the WorkSpaces. Customers can increase the size of the user volumes attached to WorkSpaces at any time. Changing the volume size of a WorkSpace will effect the billing rate. See Amazon WorkSpaces pricing for more information. To get started on the WorkSpaces file transfer function, see Configure file transfer for DCV WorkSpaces.
Today, AWS Partner Central has enhanced the APN Customer Engagements (ACE) Pipeline Manager by allowing AWS partners to link an AWS Marketplace private offer to a launched opportunity.\n This feature gives AWS partners improved visibility into their AWS Marketplace transactions. By linking AWS Marketplace private offers to opportunities, partners can track deals from their co-selling pipeline all the way to customer offers. Additionally, partners can view their agreement information, such as agreement ID and creation date, in ACE Pipeline Manager, connected to the original customer opportunity. Starting today, this feature is available globally for all AWS Partners who have linked their AWS Partner Central and AWS Marketplace accounts. To get started, log in to AWS Partner Central and review the ACE user guide.
YouTube
AWS Black Belt Online Seminar (Japanese)
- Toward the establishment of the Cloud Center of Excellence (CCoE) [AWS Black Belt]
- AWS IoT Core - Message Edition [AWS Black Belt]
- Amazon Bedrock Agents Toward Realization of Autonomous AI: Study Edition [Amazon Bedrock Series #04a】【AWS Black Belt]
- AWS CloudTrail Basics: The Role and Trails of AWS CloudTrail [AWS Black Belt]
AWS Blogs
AWS Japan Blog (Japanese)
- How to build an authenticated Next.js app using AWS Amplify and Auth0
- Information on the release of AWS Black Belt webinar materials and videos for September 2024
- Voice of the customer (VoC) analysis with generative AI implemented by ANA X
- 58% cost reduction with Amazon Connect
- 4 key steps to optimizing retail digital commerce
- Casio Computer’s AWS-Generated AI Case: Using Amazon Bedrock in an In-house AI Chatbot
- Harness the power of smart store technology
AWS Architecture Blog
AWS Compute Blog
AWS Database Blog
Desktop and Application Streaming
AWS DevOps & Developer Productivity Blog
- How to identify inactive users of Amazon Q Developer
- Use the latest AWS innovations with the new AWS Cloud Control provider for Pulumi
The Internet of Things on AWS – Official Blog
AWS Machine Learning Blog
AWS Security Blog
Open Source Project
AWS CLI
AWS CDK
Amplify for JavaScript
- tsc-compliance-test@0.1.56
- aws-amplify@6.6.4
- @aws-amplify/storage@6.6.9
- @aws-amplify/pubsub@6.1.26
- @aws-amplify/predictions@6.1.26
- @aws-amplify/notifications@2.0.51
- @aws-amplify/interactions@6.0.50
- @aws-amplify/geo@3.0.51
- @aws-amplify/datastore-storage-adapter@2.1.53
- @aws-amplify/datastore@5.0.53