All news with #aws tag

CloudWatch Container Insights Supports Neuron UltraServers

🔍 Amazon CloudWatch Container Insights now supports Neuron UltraServers on Amazon EKS, enabling aggregated observability for multi-instance ML servers. The update adds a new UltraServer ID filter that presents consolidated metrics across all instances in a logical UltraServer group while retaining per-instance visibility. Available in all commercial AWS Regions and AWS GovCloud (US), this simplifies monitoring and troubleshooting for Trainium and Inferentia workloads.

AWS ALB Adds Health Check Logs to S3 for Troubleshooting

🛡️ AWS Application Load Balancers (ALB) now support Health Check Logs that deliver detailed target health check entries to a designated Amazon S3 bucket every five minutes. The optional feature records timestamps, target identifiers, per-target health status, and precise failure reasons to accelerate troubleshooting. You can enable it via the AWS Management Console, AWS CLI, or SDK. Available in all AWS Commercial Regions, AWS GovCloud (US), and AWS China Regions, logs incur no additional fees beyond standard S3 storage and can reduce mean time to resolution for target health investigations.

Amazon WorkSpaces Applications Adds IPv6 Support Widely

🌐 Amazon WorkSpaces Applications now supports IPv6 for WorkSpaces Applications domains and external endpoints, allowing users on IPv6-capable devices to connect (SAML authentication is not supported over IPv6). This reduces the need for address-translation appliances, helps meet IPv6 compliance, and simplifies VPC addressing. The feature is available at no additional cost in 16 AWS Regions and uses pay-as-you-go pricing; customers must use the latest client or web access.

Amazon Lex adds Wait & Continue in 10 new languages

🗣️ Amazon Lex now supports Wait & Continue in ten additional languages — Chinese, Japanese, Korean, Cantonese, Spanish, French, Italian, Portuguese, Catalan, and German. The feature enables deterministic voice and chat bots to pause while customers gather information and then resume the interaction seamlessly. It enhances natural, multilingual self-service experiences and is available in all AWS Regions where Amazon Lex operates.

EC2 Fleet Adds Encryption Attribute for ABIS Selection

🔐 Amazon EC2 Fleet now supports an encryption attribute for Attribute-Based Instance Type Selection (ABIS). You can set RequireEncryptionInTransit in InstanceRequirements to limit launches to instance types that support encryption-in-transit, addressing compliance with VPC Encryption Controls in enforced mode. The GetInstanceTypesFromInstanceRequirements (GITFIR) API previews eligible instance types. The feature is available in all AWS commercial and GovCloud (US) Regions. To start, set RequireEncryptionInTransit=true when calling CreateFleet or GITFIR.

Amazon RDS for Oracle SE2 License Included in Taipei

📢 Amazon RDS for Oracle now offers Oracle Database Standard Edition 2 (SE2) License Included on R7i and M7i instances in the Asia Pacific (Taipei) region. Launched Nov 21, 2025, these License Included instances remove the need to purchase separate Oracle Database licenses and are available through the AWS Management Console, AWS CLI, and SDKs. There are no separate license or support charges. Review the Rethink Oracle Standard Edition Two on Amazon RDS for Oracle blog and Amazon RDS pricing for cost and regional availability.

Amazon ECS and EKS Add AI-Powered Troubleshooting in Console

🔍 The AWS Management Console now integrates Amazon Q Developer AI-assisted troubleshooting directly into Amazon ECS and Amazon EKS. Contextual 'Inspect with Amazon Q' controls appear alongside error and status messages to gather relevant logs and metrics, analyze root causes, and present one-click mitigation suggestions. The experience covers failed tasks, container health checks, deployment rollbacks, cluster and node health, and Kubernetes pod events, and is available in all AWS commercial regions.

AWS Glue adds DynamoDB connector with Spark DataFrame

🚀 AWS Glue now includes a new Amazon DynamoDB connector that natively supports Apache Spark DataFrames. This enables developers to reuse existing Spark DataFrame code across AWS Glue, Amazon EMR, and other Spark environments with minimal modification, replacing prior reliance on Glue-specific DynamicFrame objects. The connector exposes the full range of DataFrame operations and current Spark performance optimizations and is available in all AWS Commercial Regions where Glue runs.

Amazon Route 53 DNS API Endpoint Adds IPv6 Dual-Stack

🌐 Amazon Route 53 now exposes a dual-stack API endpoint at route53.global.api.aws, allowing clients to connect over IPv6, IPv4, or dual-stack. The existing IPv4-only endpoint remains available for backward compatibility. IPv6 support is available in all Commercial Regions at no additional cost and can be enabled via the AWS CLI or Management Console. This reduces IPv4 translation complexity and helps organizations meet IPv6 compliance.

Amazon ECS Managed Instances Now in GovCloud Regions

🚀 Amazon ECS Managed Instances is now available in the AWS GovCloud (US-East) and GovCloud (US-West) Regions, bringing a fully managed EC2 compute option to government-focused accounts. Managed Instances dynamically scales and optimizes EC2 capacity, supports task-level requirements (vCPU, memory, CPU architecture), and lets you select instance families including GPU, network-optimized, and burstable types. AWS initiates security patching every 14 days; management fees apply in addition to EC2 costs.

Amazon Lightsail launches Nginx blueprint with IMDSv2

🚀 Amazon Lightsail now offers a new Nginx blueprint that includes IMDSv2 enforced by default and supports IPv6-only instances. With a few clicks you can provision a Lightsail VPS of your chosen size with Nginx preinstalled, using Lightsail instance bundles that combine OS, storage, and monthly data transfer. This blueprint is available in all AWS Regions where Lightsail runs; consult Lightsail documentation for supported blueprints and pricing details.

AWS CloudWatch Application Signals adds GitHub Action

🔍 AWS announced general availability of a new Application Observability for AWS GitHub Action and enhancements to the CloudWatch Application Signals MCP server that embed observability into developer workflows. Developers can now request trace-aware diagnostics inside GitHub — for example by mentioning @awsapm in Issues — and receive intelligent, observability-based responses without switching consoles. The MCP server updates also let AI coding agents (such as Kiro) identify the exact file, function, and line causing latency or errors and provide or modify OTel-based instrumentation guidance for CDK or Terraform across ECS, EKS, Lambda, and EC2.

Amazon Aurora DSQL Adds Integrated Console Query Editor

🔎 Amazon has added an integrated query editor to Aurora DSQL, enabling secure, browser-based SQL access from the AWS Management Console without requiring external client installation or configuration. The editor includes syntax highlighting, auto-completion, and intelligent code assistance, along with schema exploration and result viewing in a single interface. Available in all Regions where Aurora DSQL is offered, this feature shortens time-to-value and simplifies database interactions for developers, analysts, and data engineers.

CloudWatch Console Adds Automated Agent Management

⚙️ Amazon CloudWatch now provides an in-console experience for automated installation and configuration of the CloudWatch agent on EC2 instances. The new UI surfaces agent status across your EC2 fleet, automatically detects supported workloads, and uses CloudWatch observability solutions to recommend monitoring configurations. Customers can deploy agents with one-click installs or create tag-based policies for automated fleet-wide management, including for auto-scaled instances, reducing setup time from hours to minutes.

AWS Security Incident Response Introduces Metered Pricing

🔒 AWS Security Incident Response introduces a metered pricing model that charges per ingested security finding and includes a free tier for the first 10,000 findings per month. After the free tier, the per-finding rate is $0.000676 with tiered discounts at higher volumes. The consumption-based approach removes upfront commitments and minimum fees, enabling teams to scale response capability as needs evolve. Customers can monitor finding counts via Amazon CloudWatch at no extra cost, and the new pricing automatically applies in supported Regions starting November 21, 2025.

AWS Load Balancers Add Post-Quantum TLS Key Exchange

🔐 AWS Application Load Balancers (ALB) and Network Load Balancers (NLB) now offer an opt-in post-quantum TLS (PQ-TLS) key exchange option. The new PQ-TLS security policies use hybrid key agreement that combines classical algorithms with post-quantum KEMs including the standardized ML-KEM, protecting against 'harvest now, decrypt later' attacks. Available at no extra cost across AWS Commercial, GovCloud (US), and China Regions, the feature requires explicit listener updates and supports monitoring via ALB connection logs and NLB access logs.

ECR Dual-Stack Endpoints Gain AWS PrivateLink Support

🔒 Amazon Elastic Container Registry (ECR) now supports AWS PrivateLink for its dual-stack endpoints. This enables customers to standardize on IPv6 while continuing to accept IPv4 traffic, and to keep API and Docker/OCI request traffic confined to the Amazon network. By routing dual-stack endpoint traffic over PrivateLink, organizations can reduce exposure to the public internet and improve their security posture. The feature is generally available in all AWS commercial and GovCloud (US) regions at no additional cost.

AWS Transfer Family Web Apps Support VPC Endpoints

🔒 AWS Transfer Family web apps now support Virtual Private Cloud (VPC) endpoints, enabling private, in‑VPC access to your browser-based S3 file interface at no additional charge. Workforce users can connect through a VPC, AWS Direct Connect, or VPN so that file traffic remains inside your network boundary. Administrators can enforce controls with security groups and subnet-level NACLs, retaining full visibility and control over transfers. Configure and manage endpoints via the Transfer Family console, AWS CLI, or SDK.

Amazon EC2 Image Builder Enables Flexible AMI Distribution

🚀 Amazon has expanded EC2 Image Builder with flexible AMI distribution features that let you distribute existing AMIs, retry failed distributions, and create custom distribution workflows. Distribution workflows introduce sequential steps—such as AMI copies, wait-for-action checkpoints, and attribute modifications—to support staged rollouts and approval gates with the same step-level visibility as build and test workflows. These capabilities work across regions and accounts and are available at no extra cost.

AWS STS now supports dual‑stack IPv6 endpoints globally

🌐 AWS Security Token Service (STS) now supports IPv6 via new dual‑stack endpoints, allowing connections over IPv6, IPv4, or both. Dual‑stack access is supported over the public internet and privately from Amazon VPCs using AWS PrivateLink, so STS APIs can be invoked without traversing the public internet. This capability is available in all Commercial, GovCloud (US), and China Regions. Configure STS clients using the IAM user guide to enable dual‑stack endpoints.