3/6/2025, 12:00:00 AM ~ 3/7/2025, 12:00:00 AM (UTC)
Recent Announcements
AWS WAF adds JA4 fingerprinting and aggregation on JA3 and JA4 fingerprints for rate-based rules
AWS WAF now supports JA4 fingerprinting of incoming requests, enabling customers to allow known clients or block requests from malicious clients. Additionally, you can now use both JA4 and JA3 fingerprints as aggregation keys within WAF’s rate-based rules, allowing you to monitor and control request rates based on client fingerprints.\n A JA4 TLS client fingerprint contains a 36-character long fingerprint of the TLS Client Hello which is used to initiate a secure connection from clients. The fingerprint can be used to build a database of known good and bad actors to apply when inspecting HTTP requests. These new features enhance your ability to identify and mitigate sophisticated attacks by creating more precise rules based on client behavior patterns. By leveraging both JA4 and JA3 fingerprinting capabilities, you can implement robust protection against automated threats while maintaining legitimate traffic flow to your applications. JA4 as a match statement is available in all regions where AWS WAF is available for Amazon CloudFront, and Amazon Application Load Balancer (ALB). JA3 and JA4 aggregation keys are available in all regions, except the AWS GovCloud (US) Regions, the China Regions, Asia Pacific (Melbourne), Israel (Tel Aviv) and Asia Pacific (Malaysia). There is no additional cost for using this feature, however standard AWS WAF charges still apply. For more information about pricing, visit the AWS WAF Pricing page.
We are excited to announce that Amazon OpenSearch Serverless is expanding availability to AWS US West (SFO, N. California) and Europe (ARN, Stockholm) Regions. OpenSearch Serverless is a serverless deployment option for Amazon OpenSearch Service that makes it simple to run search and analytics workloads without the complexities of infrastructure management. OpenSearch Serverless’ compute capacity used for data ingestion, search, and query is measured in OpenSearch Compute Units (OCUs). To control costs, customers can configure maximum number of OCUs per account.\n Please refer to the AWS Regional Services List for more information about Amazon OpenSearch Service availability. To learn more about OpenSearch Serverless, see the documentation.
Amazon OpenSearch Serverless now available in AWS Europe (Milan) Region
We are excited to announce that Amazon OpenSearch Serverless is expanding availability to the Amazon OpenSearch Serverless to AWS Europe (Milan) Region. OpenSearch Serverless is a serverless deployment option for Amazon OpenSearch Service that makes it simple to run search and analytics workloads without the complexities of infrastructure management. OpenSearch Serverless’ compute capacity used for data ingestion, search, and query is measured in OpenSearch Compute Units (OCUs). To control costs, customers can configure maximum number of OCUs per account.\n Please refer to the AWS Regional Services List for more information about Amazon OpenSearch Service availability. To learn more about OpenSearch Serverless, see the documentation.
Amazon EC2 M7a instances are now available in AWS Asia Pacific (Sydney) Region
Starting today, the general-purpose Amazon EC2 M7a instances are now available in AWS Asia Pacific (Sydney) Region. M7a instances, powered by 4th Gen AMD EPYC processors (code-named Genoa) with a maximum frequency of 3.7 GHz, deliver up to 50% higher performance compared to M6a instances.\n With this additional region, M7a instances are available in the following AWS Regions: US East (Ohio), US East (N. Virginia), US West (Oregon), Asia Pacific (Sydney, Tokyo), and Europe (Frankfurt, Ireland, Spain, Stockholm). These instances can be purchased as Savings Plans, Reserved, On-Demand, and Spot instances. To get started, visit the AWS Management Console, AWS Command Line Interface (CLI), and AWS SDKs. To learn more, visit the M7a instances page.
Amazon Q Developer announces a new CLI agent within the command line
Today, Amazon Q Developer announced an enhanced CLI agent within the Amazon Q command line interface (CLI) that allows you to have more dynamic conversations. With this update, Amazon Q Developer can now use the information in your CLI environment to help you read and write files locally, query AWS resources or create code.\n You can now ask Q Developer to write code, test it, help debug issues, and Q Developer will iteratively make adjustments based on your feedback and approval. This allows you to efficiently complete tasks, improving and streamlining the development process, without needing to leave your terminal. The enhanced CLI agent, powered by Anthropic’s most intelligent model to date, Claude 3.7 Sonnet, is available on Amazon Q Developer Free, and Pro tiers and in all AWS regions where Q Developer is available. Learn more.
Sharing of Connections is now available in AWS CodeConnections
AWS CodeConnections now allows you to securely share your Connection resource across individual AWS accounts or within your AWS Organization. Previously, to create a Connection, you installed the AWS connector App for GitHub or GitLab or Bitbucket for each AWS account from which source access was required.\n You can now use AWS Resource Access Manager (RAM) to securely share a Connection to your third-party source provider across AWS accounts. By using AWS RAM to share your Connection resource, you no longer need to create a Connection in each AWS account. Instead, you can create a Connection in an AWS account, and then share the Connection across multiple AWS accounts. By using AWS RAM, you can also automate sharing the connection across AWS accounts, reducing the operational overhead to support a multi-account deployment strategy. To apply fine grained access control, in the AWS account with which a Connection is shared, you can use IAM policies to manage what operations an IAM role can perform. To learn more about sharing connections, visit our documentation. To learn more about what Connections in AWS CodeConnections are and how they work, visit our documentation.
Announcing MQTT enabled SiteWise Edge gateways for AWS IoT SiteWise
Today, AWS announces the general availability of MQTT enabled SiteWise Edge gateways for AWS IoT SiteWise. AWS IoT SiteWise is a managed service that makes it easy to collect, store, organize, and analyze data from industrial equipment at scale. With this launch, newly created gateways now include an MQTTv5 broker component that centralizes connectivity between SiteWise Edge and customer built edge components.\n Now you can integrate communications between your own edge components and AWS IoT SiteWise Edge using the MQTT protocol in a publish and subscribe topology. This eliminates building point-to-point connections between edge components simplifying the integration of custom logic for edge data flows. You can build components at the edge for data contextualization. You can use your components to enrich equipment telemetry data with data from operations systems (MES, ERP, etc.) required in calculating key performance indicators (KPIs) such as Overall Equipment Effectiveness (OEE), uptime, and progress against production targets. Through AWS IoT SiteWise Edge, you have native integration of this data for storage and additional use cases in the AWS cloud. You can use your Unified Name Space (UNS), an industrial data normalization and organization pattern, at the edge and extend it with AWS cloud services. The new gateways securely transmit the equiment data streams of your choice to AWS IoT SiteWise, using existing organization, storage, and analytics features of the service with robust store and forward capabilities of SiteWise Edge. This feature is available in all AWS IoT SiteWise commercial regions. To learn more, please see our documentation, blogpost, and example.
Announcing AWS Step Functions Workflow Studio for the VS Code IDE
AWS Step Functions Workflow Studio is now available in the AWS Toolkit for Visual Studio Code, enabling you to visually create, edit, and debug state machine workflows directly in your local development environment.\n AWS Step Functions is a visual workflow service capable of orchestrating over 14,000+ API actions from over 220 AWS services to build distributed applications and data processing workloads. Workflow Studio is a visual builder that allows you to compose workflows on a canvas, while generating workflow definitions in the background. Workflow Studio for VS Code brings the console experience to the IDE, making it easier to create workflows in your local development environment. The new IDE experience works with infrastructure as code tools and enables you to debug your workflow steps using the TestState API directly within the IDE. To get started, download the AWS Toolkit for VS Code, or update to the latest version. The AWS Toolkits are open source projects and you can submit issues or feature requests to open source GitHub repos for the Toolkit for VS Code. To learn more, please visit our documentation or read the launch blog.
Announcing Amazon GameLift Streams
Amazon GameLift Streams is a new managed capability that allows developers to stream games at up to 1080p resolution and 60 frames per second to any device with a WebRTC-enabled browser. In just a few clicks, you can upload games built with a variety of 3D engines with little to no modification, provision streaming capacity in specific AWS Regions, and immediately start test streaming. Players can start playing AAA, AA, and Indie games over the internet in just a few seconds on their PCs, phones, tablets, and smart TVs without waiting hours for a download.\n With Amazon GameLift Streams, you can create new direct-to-player distribution channels, launch instant-play game demos, conduct secure playtesting, and expand monetization opportunities. With support for Windows, Linux, and Proton runtimes, Amazon GameLift Streams helps you avoid the expense and complexity of modifying and rebuilding game code for streaming. You can flexibly scale streaming up or down based on player demand, and only provision and pay for the capacity you need. You can choose from six AWS Regions to deliver low-latency game play closer to players around the world. This new capability opens opportunities for you to expand the reach, engagement, and sales of your games while maintaining full control over the player relationship, experience, branding, and business model.
Amazon GameLift Streams is a new capability of Amazon GameLift, a fully managed service on AWS empowering developers to build and deliver the world’s most demanding games. The new capability is available in the following AWS Regions: US East (N. Virginia), US East (Ohio), US West (Oregon), Asia Pacific (Tokyo), Europe (Frankfurt), and Europe (Ireland).
To learn more, visit the Amazon GameLift Streams website, read the Developer Guide, or explore the AWS News Blog post.
AWS Blogs
AWS Japan Blog (Japanese)
- Prepare for traffic spikes using load balancer capacity unit (LCU) reservations
- AWS Weekly Roundup: Anthropic Claude 3.7, JAWS Days, Cross Account Access, etc. (March 3, 2025)
- Protect generative AI workloads from prompt injection
AWS News Blog
AWS Compute Blog
AWS DevOps & Developer Productivity Blog
AWS for Industries
AWS Machine Learning Blog
- Build a Multi-Agent System with LangGraph and Mistral on AWS
- Evaluate RAG responses with Amazon Bedrock, LlamaIndex and RAGAS