All news with #aws tag

AWS PCS Expands Slurm Configuration with 60+ Settings

🔧 AWS Parallel Computing Service (AWS PCS) now supports over 60 additional Slurm configuration parameters, giving administrators finer control of job scheduling, resource allocation, access permissions, and job lifecycle behavior. New options include queue-specific priority policies, preemption rules, custom time and resource limits, and account-level access controls. Per-job execution behaviors and QoS tuning help run multi-team production HPC environments more efficiently. The expanded settings are available in all AWS PCS regions.

AWS PCS allows dynamic Slurm cluster configuration

🔧 AWS Parallel Computing Service (AWS PCS) now lets you change key Slurm workload manager settings on live clusters without rebuilding them. Administrators can update accounting and workload management parameters via the AWS Management Console, AWS CLI, or AWS SDK. This change reduces operational disruption and enables faster adaptation to evolving HPC requirements. Changes are available in all regions where AWS PCS is offered.

Cohere Embed v4 Multimodal Embeddings on Amazon Bedrock

🚀 Amazon Bedrock now supports Cohere Embed v4, a multimodal embedding model that generates high-quality embeddings for text, images, and complex business documents. The model natively processes tables, charts, diagrams, code snippets, and handwritten notes, reducing the need for extensive preprocessing and data cleanup. It supports over 100 languages and includes industry fine-tuning for finance, healthcare, and manufacturing. Cohere Embed v4 is available for on-demand inference in select AWS Regions; access is requested via the Bedrock console.

Amazon EC2 Instance Connect Endpoint Adds IPv6 Support

🌐 Amazon EC2 Instance Connect Endpoint now supports IPv6 connectivity. Customers can configure endpoints as dual-stack or IPv6-only to connect to instances with IPv6 addresses and continue using SSH and RDP without public IPv4 addresses. The capability is available in all AWS Commercial Regions, AWS GovCloud (US), and China Regions and works via the AWS Console, AWS CLI, and standard SSH/RDP clients. It maintains backward compatibility with existing IPv4 deployments.

Amazon GameLift Streams Adds IPv6 for Windows Streaming

📡 Amazon GameLift Streams now supports IPv6 for streaming applications hosted on Windows-based stream groups, enabling dual-stack connectivity (IPv4 and IPv6) for streamed Windows applications. This enhancement gives customers additional addressing options and helps meet IPv6 compliance requirements while preserving compatibility with existing IPv4 deployments. Note that Linux runtime applications will continue to require IPv4 for streaming; the capability is available in all AWS Regions where GameLift Streams is offered.

Amazon Keyspaces Adds IPv6 Dual-Stack Endpoints Support

🌐 Amazon Keyspaces now supports IPv6 through new dual-stack endpoints that accept both IPv6 and IPv4 connections, expanding available address space while preserving compatibility with existing IPv4 applications. The enhancement enables gradual migration strategies for critical database services and reduces disruption during transition. IPv6 access is also supported via PrivateLink interface VPC endpoints for private connectivity without traversing the public internet. This capability is available now in all AWS Commercial and AWS GovCloud (US) Regions where Keyspaces is offered, at no additional cost.

Amazon MWAA Announces Support for Apache Airflow 3.0

🚀 Amazon Managed Workflows for Apache Airflow (MWAA) now supports Apache Airflow 3.0, enabling easier authoring, scheduling, and monitoring of complex workflows. The release introduces a redesigned UI and an event-driven scheduler that can trigger workflows directly from external events. The new Task SDK and Task Execution API reduce boilerplate, improve isolation, and limit direct metadatabase access. MWAA also adds Python 3.12 support and security fixes to enhance reliability.

Amazon Connect Adds Agent Time-Off Balance Data to Analytics

🔍 Amazon Connect now surfaces agent time-off balance data in the analytics data lake, enabling managers and analysts to generate reports and insights from both current and historical balances across categories such as paid time-off, sick leave, and leave of absence. The capability includes a chronological transaction log that shows each adjustment and its impact on balances, removing the need for manual reconciliation and improving manager productivity and response to agent inquiries. It is available in all AWS Regions where Amazon Connect scheduling is supported.

SageMaker Unified Studio adds SSO for Spark sessions

🔐 Amazon SageMaker Unified Studio now supports corporate identities for interactive Apache Spark sessions using AWS Identity Center trusted identity propagation. Data engineers and scientists can sign on to JupyterLab Spark sessions with organizational credentials while administrators apply fine-grained access controls and maintain end-to-end data access traceability. The integration leverages AWS Lake Formation, Amazon S3 Access Grants, and Amazon Redshift Data APIs, and includes comprehensive AWS CloudTrail logging for interactive and background sessions to streamline compliance.

Amazon Bedrock Data Automation Adds Enhanced Transcription

🔊 Amazon Bedrock Data Automation (BDA) now offers enhanced transcription with speaker diarization and channel identification, letting developers separate and process individual speakers or channels in audio files. It also provides a guided, natural language blueprint workflow for extracting custom audio insights. These capabilities simplify reading and analysis of multi-party recordings—customer calls, telehealth visits, webinars, public-safety recordings, and meetings—and support subtitle creation, compliance monitoring, and productivity analysis. BDA is available in seven AWS Regions.

AWS Knowledge MCP Server Now Generally Available Globally

🔎 The AWS Knowledge MCP Server is now generally available, giving AI agents and MCP-compatible clients access to authoritative AWS documentation, blog posts, What's New announcements, and Well-Architected guidance in an LLM-friendly format. The GA release also adds structured knowledge about regional API and CloudFormation resource availability. The server is publicly accessible at no cost and does not require an AWS account, though usage is rate-limited. Configure MCP clients to use the AWS Knowledge MCP Server endpoint to anchor agent responses in trusted AWS context and reduce manual context management.

AWS API MCP Server v1.0.0 enables natural API control

🧭 The AWS API MCP Server v1.0.0 enables foundation models to interact with AWS APIs via natural language by generating and executing syntactically correct CLI commands. This release reduces startup time and removes local dependencies by converting the suggest_aws_command tool into a remote service, and adds streamable HTTP transport alongside stdio. Security and governance are strengthened with improved secure file system controls, better input validation, configurable denials, and options to require human oversight for mutating actions. Observability is improved through CloudWatch agent log collection, and an experimental get_execution_plan tool (enabled by EXPERIMENTAL_AGENT_SCRIPTS) offers prescriptive workflows; the server is available as a container and open-source on the AWS Labs GitHub repository.

Amazon CloudWatch Application Map Generally Available

🗺️ Amazon CloudWatch now provides an out-of-the-box Application Map that automatically discovers, groups, and visualizes services and dependencies across AWS accounts and regions. SRE and DevOps teams can apply dynamic grouping by teams, business units, or criticality to align views with operational responsibilities and accelerate troubleshooting. The map integrates with a contextual troubleshooting drawer that surfaces metrics, SLOs, health indicators, changes, and top observations, and users can pivot to application-specific dashboards for deeper investigation. This capability is available in all AWS commercial regions at no additional cost.

Amazon Detective Adds AWS PrivateLink VPC Endpoint Support

🔒 Amazon Detective now supports VPC endpoints via AWS PrivateLink, allowing you to initiate Detective API calls from inside your VPC without Internet traversal. The capability is available in all AWS Regions where Detective is offered. Create a VPC endpoint through the VPC console, API, or SDK; this provisions an elastic network interface with a private IP in your chosen subnets as the entry point. Detective continues to ingest and correlate logs and findings to power investigations.

AWS DataSync Supports VPC Endpoint Policies and FIPS

🔒 AWS DataSync now supports VPC endpoint policies, enabling administrators to control access to DataSync API operations through VPC service endpoints, including FIPS 140-3 enabled endpoints. You can restrict specific actions such as CreateTask, StartTaskExecution, or ListAgents and combine these controls with identity-based and resource-based policies. The capability is available in all AWS Regions and helps strengthen security posture and compliance when accessing DataSync via VPC endpoints.

AWS Cloud WAN Now Available Across AWS GovCloud Regions

🛰️ AWS has made AWS Cloud WAN available in AWS GovCloud (US-West) and AWS GovCloud (US-East) as of Oct 1, 2025. The service provides a central dashboard and policy-driven networking to create a global network that spans VPCs, Transit Gateways, and on-premises locations. It supports BGP-based global route exchange and connectivity via Site-to-Site VPN, Direct Connect, or third-party SD-WAN solutions. The dashboard offers consolidated visibility into network health, security, and performance to simplify operations.

Amazon SageMaker Managed MLflow Now in AWS GovCloud

🛡️ Amazon SageMaker managed MLflow is now available in both AWS GovCloud (US-West) and AWS GovCloud (US-East) regions. The managed service integrates MLflow experiment tracking with SageMaker capabilities, streamlining AI experimentation and accelerating GenAI development from idea to production. It provides end-to-end observability to help reduce time-to-market and simplify compliance and operational oversight for government workloads.

CloudWatch & OpenSearch Integrated Analytics Expands

📈 Amazon has expanded the CloudWatch and OpenSearch Service integrated analytics experience to five additional commercial regions: Asia Pacific (Osaka and Seoul), Europe (Milan and Spain), and US West (N. California). CloudWatch Logs customers can now query logs with SQL or OpenSearch PPL in addition to CloudWatch Logs Insights QL, including JOINs, subqueries, and rich JSON, mathematical, datetime and string functions. With a few clicks, users can create OpenSearch dashboards for VPC, WAF, and CloudTrail logs and analyze data in-place without copying logs or building ETL pipelines.

Defending LLM Applications Against Unicode Tag Smuggling

🔒 This AWS Security Blog post examines how Unicode tag block characters (U+E0000–U+E007F) can be abused to hide instructions inside text sent to LLMs, enabling prompt-injection and hidden-character smuggling. It explains why Java's UTF-16 surrogate handling can make one-pass sanitizers inadequate and shows recursive sanitization as a remedy, plus Python-safe filters. The post also outlines using Amazon Bedrock Guardrails denied topics or Lambda-based handlers as mitigation and notes visual/compatibility trade-offs.

AWS Direct Connect 100G and 10G with MACsec in Bogota

🔌 AWS expanded 10 Gbps and 100 Gbps Direct Connect dedicated connections with MACsec encryption at the Equinix BG1 data center near Bogota, Colombia. Customers can now provision private, direct network access from this location to all public AWS Regions (except China), AWS GovCloud Regions, and AWS Local Zones. The enhancement delivers more consistent, lower-latency and encrypted connectivity for enterprises and partners in the region.