2025-04-28

4/28/2025, 12:00:00 AM ~ 4/29/2025, 12:00:00 AM (UTC)

Recent Announcements

AWS Amplify enhances developer tooling with refined output and CDK-style notices

AWS Amplify introduces two key improvements to its backend tooling: streamlined deployment output using the AWS CDK Toolkit and a new notice system for local development. These updates optimize how developers receive deployment status information and important messages directly in their terminal when executing Amplify commands.\n These enhancements improve the development experience by focusing on essential information while proactively surfacing critical notices. Frontend developers can now focus on relevant deployment information without the distraction of underlying infrastructure details. The notice system, similar to CDK’s approach, delivers important messages about potential issues, compatibility concerns, and other noteworthy items related to Amplify backends, enabling developers to address problems early in the development process. These features are available in all AWS Regions where AWS Amplify is supported. To learn more about these developer experience improvements, visit the AWS Amplify documentation for local development and backend tooling.

Automated HTTP validated public certificates with Amazon CloudFront

AWS Certificate Manager (ACM) announces automated public TLS certificates for Amazon CloudFront. CloudFront customers can now simply check a box to receive required public certificates to enable TLS when creating new CloudFront content delivery applications. ACM and CloudFront work together to automatically request, issue and associate the required public certificates with CloudFront. ACM will also automatically renew these certificates as long as the certificate is in use and traffic for the certificate domain is routed to CloudFront. Previously, to set up a similar secure CloudFront distribution, customers had to request a public certificate through ACM, validate the domain, and then associate the issued certificate with the CloudFront distribution. This option remains available to customers.\n
ACM uses a domain validation method commonly referred to as HTTP, or file-based validation, to both issue and renew these certificates. Domain validation ensures that ACM issues the certificates only to domain users who are authorized to acquire a certificate for the domain. Network and certificate administrators can still use ACM to view and monitor these certificates. While ACM automatically manages the certificate lifecycle, administrators can use ACM’s Certificate lifecycle CloudWatch events to monitor certificate updates and publish the information to a centralized security information and event management (SIEM) and/or enterprise resource planning (ERP) solution. To learn more about this feature, please refer to our documentation. You can learn more about ACM here and CloudFront here.

Writer’s Palmyra X5 and X4 models are now available in Amazon Bedrock

Writer’s enterprise-grade foundation models, Palmyra X5 and X4, are now available as fully managed, serverless models in Amazon Bedrock. AWS is the first cloud provider to offer fully managed models from Writer, allowing organizations to leverage enterprise AI capabilities with serverless scalability and cost optimization.\n Palmyra X5 has a one million token context window, while Palmyra X4 features a 128,000 token context window, both designed for sophisticated business applications. These models, top-ranked on Stanford’s HELM benchmark, excel at complex tasks including advanced reasoning, multi-step tool-calling, and built-in RAG (Retrieval-Augmented Generation). Both models support multiple languages including English, Spanish, French, German, and Chinese, making them ideal for global enterprise deployments. Organizations can use Palmyra models to automate sophisticated workflows across various industries—financial services teams can analyze extensive market research and regulatory documents, healthcare providers can process medical documentation and analyze research papers, and technology companies can generate and validate code at scale. With Amazon Bedrock, these capabilities are available with automatic resource scaling and on-demand pricing.

Writer’s Palmyra X5 and X4 models are now available in the US West (Oregon) AWS Region. For more information on supported Regions, visit the Amazon Bedrock Model Support by Regions guide. To learn more about Writer’s Palmyra models, read the news blog and visit the Writer product page. To get started using Writer models in Amazon Bedrock, visit the Amazon Bedrock console.

AWS Client VPN now supports Client Routes Enforcement

Today, AWS announced a new AWS Client VPN feature that monitors device networking routes, prevents VPN traffic leaks, and strengthens remote access security. The feature continuously tracks your users’ device routing tables to ensure outbound traffic flows through the VPN tunnel according to your configured settings. If the feature detects any modified networking route settings, it automatically restores the routes to your original configuration.\n AWS Client VPN allows admins to configure routes on users’ devices to route traffic through the VPN. For example, an admin might configure end users’ devices to connect to the 10.0.0.0/24 network using VPN connectivity while the rest of the traffic breaks out locally from the device. However, connected devices could deviate from the organization’s configurations, causing VPN leaks. For example, even if you configure traffic to the 10.0.0.0/24 network to go via VPN, users or other clients running on the device can modify settings and bypass VPN for this traffic. With this feature enabled, our VPN client will continuously monitor routes and automatically correct deviations by repairing routes back to the original configuration. This feature ensures admin’s configuration is consistently applied to end users, maintaining the connection integrity of your organization. This feature is available in all regions where AWS Client VPN is generally available with no additional cost. To learn more about Client VPN:

Visit the AWS Client VPN product page

Read the AWS Client VPN Client Route Enforcement documentation

Introducing Amazon EC2 I7i high performance Storage Optimized instances

Amazon Web Services is announcing the general availability of next generation high performance Storage Optimized Amazon EC2 I7i instances. Powered by 3rd generation AWS Nitro SSDs, I7i instances offer up to 45TB of NVMe storage with up to 50% better real-time storage performance, up to 50% lower storage I/O latency, and up to 60% lower storage I/O latency variability compared to I4i instances. Powered by 5th generation Intel Xeon Scalable processors with an all-core turbo frequency of 3.2 GHz, I7i instances offer the best compute and storage performance for x86-based storage optimized instances in Amazon EC2, delivering up to 23% better compute performance and more than 10% better price performance over previous generation I4i instances.\n I7i instances are ideal for I/O intensive and latency-sensitive workloads such as transactional databases, real-time and NoSQL databases, real-time analytics, AI/ML pre-processing for training, indexing and search engines requiring high random IOPS performance with real-time latency to access the small to medium size datasets (multi-TBs). Additionally, the torn write prevention feature, enables customers to eliminate database performance bottlenecks. I7i instances are available in eleven sizes - nine virtual sizes up to 48xlarge and two bare metal options - delivering up to 100Gbps of network bandwidth and 60Gbps of Amazon Elastic Block Store (EBS) bandwidth. These instances are available today in US East (N. Virginia, Ohio) and US West (Oregon) AWS regions, with flexible purchase options including On Demand and Savings Plans. To learn more, visit the I7i instances page.

Amazon EC2 High Memory instances now available in US East (Ohio) Region

Starting today, Amazon EC2 High Memory instances with 24TB of memory (u-24tb1.112xlarge) are available in the US East (Ohio) region. Customers can start using these new High Memory instances with On Demand and Savings Plan purchase options.\n Amazon EC2 High Memory instances are certified by SAP for running Business Suite on HANA, SAP S/4HANA, Data Mart Solutions on HANA, Business Warehouse on HANA, and SAP BW/4HANA in production environments. For details, see the Certified and Supported SAP HANA Hardware Directory. For information on how to get started with your SAP HANA migration to EC2 High Memory instances, view the Migrating SAP HANA on AWS to an EC2 High Memory Instance documentation. To hear from Steven Jones, GM for SAP on AWS on what this launch means for our SAP customers, you can read his launch blog.

Announcing SaaS Manager for Amazon CloudFront

Today, AWS announces CloudFront SaaS Manager, a new Amazon CloudFront feature designed to efficiently manage content delivery across multiple websites for Software-as-a-Service (SaaS) providers, web development platforms, and companies with multiple brands/websites. CloudFront SaaS Manager provides a unified experience, alleviating the operational burden of managing multiple websites at scale, including TLS certificate management, DDoS protection, and observability.\n CloudFront SaaS Manager introduces reusable configuration settings, eliminating redundant configurations and allowing customers to maintain consistent settings across their websites. This not only saves time but also reduces the potential for errors in configuration. With CloudFront SaaS Manager, customers benefit from optimal CDN and security defaults, ensuring high performance and secure protections following AWS best practices. Additionally, CloudFront SaaS Manager can automate requesting, issuing, and associating TLS certificates with CloudFront through a simplified AWS Certificate Manager (ACM) integration. This addresses the growing complexity in certificate management, security policy enforcement, and cross-account synchronization that companies face as their customer base expands. Find more information on using CloudFront SaaS Manager here, on the Amazon CloudFront SaaS Manager page, and in the Amazon CloudFront Developer Guide.

AWS Blogs

AWS Japan Blog (Japanese)

• AWS Weekly — 2025/4/21
• Weekly Generative AI with AWS — 2025/4/21

AWS News Blog

• Reduce your operational overhead today with Amazon CloudFront SaaS Manager
• Writer Palmyra X5 and X4 foundation models are now available in Amazon Bedrock
• AWS Weekly Roundup: Amazon Q Developer, AWS Account Management updates, and more (April 28, 2025)

AWS Big Data Blog

• Access your existing data and resources through Amazon SageMaker Unified Studio, Part 1: AWS Glue Data Catalog and Amazon Redshift
• Access your existing data and resources through Amazon SageMaker Unified Studio, Part 2: Amazon S3, Amazon RDS, Amazon DynamoDB, and Amazon EMR
• Melting the ice — How Natural Intelligence simplified a data lake migration to Apache Iceberg

AWS Compute Blog

• Maintaining spare capacity during host failures on AWS Outposts with dynamic monitoring

AWS Database Blog

• Zupee implements Amazon Neptune to detect Wallet transaction anomalies in real time
• How Habby enhanced resiliency and system robustness using Valkey GLIDE and Amazon ElastiCache

AWS Developer Tools Blog

• General Availability of AWS SDK for .NET V4.0

AWS DevOps & Developer Productivity Blog

• Combining Snyk’s Insight with Amazon Q Developer’s Assistance to Streamline Secure Development

AWS Machine Learning Blog

• Customize Amazon Nova models to improve tool usage
• Evaluate Amazon Bedrock Agents with Ragas and LLM-as-a-judge

AWS Storage Blog

• Implementing restore testing for recovery validation using AWS Backup

Open Source Project

AWS CLI

• 2.27.3
• 1.40.3

AWS CDK

• v2.191.0

Amplify for JavaScript

• tsc-compliance-test@0.1.85
• aws-amplify@6.14.4
• @aws-amplify/storage@6.8.4
• @aws-amplify/rtn-web-browser@1.1.3
• @aws-amplify/rtn-push-notification@1.2.34
• @aws-amplify/react-native@1.1.9
• @aws-amplify/pubsub@6.1.55
• @aws-amplify/predictions@6.1.55
• @aws-amplify/notifications@2.0.80
• @aws-amplify/interactions@6.1.21