All news with #bedrock agents tag

🔒 This post shows how SaaS providers can use Amazon Bedrock AgentCore resource-based policies to control multi-tenant access to a shared AgentCore Runtime and Runtime endpoint. It walks through two tenant scenarios: cross-account access for Example Corp and VPC-restricted access for AnyCompany, demonstrating how to apply resource-level Allow and explicit Deny conditions. The article covers required IAM permissions, example policy files, and verification steps to ensure network- and identity-based constraints are enforced.

🔐 Amazon Bedrock AgentCore Identity now lets customers reference existing AWS Secrets Manager secret ARNs directly in Credential Providers. Previously, secrets were service-managed and created by AgentCore Identity, limiting tagging, CMK encryption, and governance controls. Customers can now create and manage secrets with their own policies and then reference the ARN without changing runtime behavior. This feature is GA in 14 AWS Regions.

🔒 Amazon explains how AgentCore Gateway enforces a centralized authorization layer between autonomous agents and external tools, treating the LLM as an untrusted actor. Policies are expressed in the open-source Cedar language for readability, bounded execution, and mathematical analyzability, enabling deterministic enforcement and formal verification during policy authoring and attachment. A neuro-symbolic workflow translates natural-language rules into Cedar, validates them with Cedar Analysis, and enforces decisions at runtime to constrain tool invocations and filter unavailable actions.

🔒 The updated AWS User Guide to Governance, Risk, and Compliance for Responsible AI Adoption provides Financial Services customers practical GRC guidance for deploying AI responsibly. It covers governance, risk management, compliance, data and model management, and AI agent oversight, and maps these considerations to AWS capabilities. The guide highlights services such as Amazon Bedrock AgentCore, Bedrock Guardrails, Bedrock Agents, SageMaker Autopilot, and SageMaker Model Monitor. It complements existing AWS responsible AI and Well-Architected resources and is available on the AWS Whitepaper portal.

💳 Amazon Bedrock AgentCore now offers a preview of AgentCore payments, enabling AI agents to autonomously discover and pay for APIs, MCP servers, web content, and other agents. Built with Coinbase and Stripe, the feature manages wallet authentication, x402 protocol negotiation, stablecoin payment execution, and proof delivery without interrupting an agent's reasoning loop. Developers can attach a Coinbase CDP or Stripe Privy wallet, set session-level spending limits enforced at the infrastructure layer, and observe every transaction through AgentCore's existing logs, metrics, and traces. The Coinbase x402 Bazaar MCP server is accessible via AgentCore Gateway, and the preview is available in four AWS Regions.

🔌 Amazon announced that Bedrock AgentCore Runtime now supports bring-your-own file system mounts for Amazon S3 Files and Amazon EFS access points. Developers can attach these file systems into every agent session at a specified path so agents use standard file operations without custom mount code, privileged containers, or pre-run download orchestration. The feature preserves sub-millisecond latency for active data and NFS close-to-open consistency. It is available across the 15 AWS Regions that support AgentCore Runtime and requires an access point ARN plus a configured VPC.

🧠 Amazon Bedrock AgentCore Memory now supports metadata on long-term memory (LTM) records, enabling agents to tag, filter, and retrieve memories using structured attributes alongside semantic search. You can define up to ten indexed keys per memory resource with STRING, NUMBER, and STRING_LIST types and apply operator filters to refine retrieval results. Metadata can be attached at ingestion or inferred automatically by the LLM using extraction instructions defined on the memory resource. This capability is available today in all AWS Regions where AgentCore Memory is supported.

🔒 Amazon announces that Bedrock AgentCore is now available in the AWS GovCloud (US-West) Region, bringing enterprise-grade agentic AI to workloads with elevated compliance and data residency requirements. AgentCore is a managed platform for building, deploying, and operating AI agents at scale without customers managing infrastructure. Core capabilities include AgentCore Runtime for session-isolated, long-running agents; AgentCore Gateway, which uses the Model Context Protocol to convert APIs and Lambda functions into agent-ready tools with controlled access to enterprise services; AgentCore Identity for integrated authentication and permission delegation; and AgentCore Observability and Evaluations for real-time monitoring and continuous quality assessment in production.

🔒 Amazon announced AgentCore availability in the AWS GovCloud (US-West) region, bringing enterprise-grade agent capabilities to workloads with elevated compliance needs. AgentCore is a managed platform for building, deploying, and operating AI agents at scale without customers managing infrastructure. Its composable services—including Runtime, Gateway, Identity, Observability, and Evaluations—enable session isolation, long-running workloads, secure access to enterprise data via the Model Context Protocol, and integration with existing identity providers.

🚀 Amazon Bedrock AgentCore is now available in the AWS South America (São Paulo) Region. AgentCore provides a platform to build, connect, and optimize agents with runtime, identity, gateway, policy, observability, code interpreter, and browser tools available at launch. Customers can deploy agents closer to end users to reduce latency and meet data residency requirements, with security enforced at the infrastructure layer that agents cannot bypass.

🚀 Amazon Bedrock AgentCore Runtime now supports Node.js as a managed language runtime for direct code deployment, joining existing Python support. Developers can package Node.js apps or compiled TypeScript projects and their dependencies into a .zip, upload to Amazon S3, and create an agent runtime without building container images. Node.js agents gain session isolation, built-in SigV4 and OAuth 2.0 authentication, bidirectional streaming, managed session storage, and observability via Amazon CloudWatch and the AWS Distro for OpenTelemetry Node.js auto-instrumentation.

🚀 Amazon Bedrock AgentCore introduces a managed harness (preview), an AgentCore CLI, and prebuilt skills to help developers build and iterate on agents faster. The managed harness runs the complete agent loop in a per-session microVM with filesystem and shell access, supports model-agnostic switching, and lets teams export orchestration as Strands-based code. Filesystem persistence (preview) enables suspending and resuming sessions, and the CLI integrates with AWS CDK to deploy agents with governance and audibility.

🖱️ Amazon announced that Bedrock AgentCore Browser now supports OS-level interaction capabilities to automate browser workflows beyond the Chrome DevTools Protocol (CDP). The update adds mouse and keyboard operations, full desktop screenshots, and handling for native system dialogs and print flows. It targets AI agent developers, test automation engineers, and teams building LLM-powered web interaction tools. The feature is enabled by default across all AgentCore Browser instances in the 14 supported AWS Regions.

📦 Amazon Bedrock AgentCore Runtime now offers managed session storage in public preview. When configured, each session receives a persistent directory at your specified mount path so agents can read and write files as usual while the runtime transparently replicates data to durable storage. On stop, data is flushed during graceful shutdown and, when you resume with the same session ID, a new microVM mounts the same storage so source files, installed packages, build artifacts, and git history are preserved. The feature supports standard Linux filesystem operations, provides up to 1 GB per session, retains data for 14 days of idle time, and confines storage communication to a single session for isolation.

🔊 Amazon Bedrock AgentCore Runtime now supports WebRTC for low-latency, bidirectional streaming between clients and agents, enabling real-time audio and video in browser and mobile applications. WebRTC complements existing WebSocket support by providing peer-to-peer, UDP-based media transport optimized for voice agents and other media-intensive experiences. AgentCore Runtime supports managed TURN via Amazon Kinesis Video Streams, third-party providers, or self-hosted TURN, and the capability is available in 14 AWS Regions.

🔒 Amazon Bedrock AgentCore now lets administrators apply Chrome Enterprise policies to AgentCore Browser and upload custom root CA certificates for both AgentCore Browser and Code Interpreter. These capabilities enable enforcement of organizational controls such as URL restrictions, disabling downloads or password managers, and implementing URL blocklists while agents operate. Custom root CA support allows agents to connect to internal systems and work with corporate TLS interception without certificate errors. The features are available in 14 AWS Regions where AgentCore is offered.

⚙️ Amazon Bedrock AgentCore Runtime now supports InvokeAgentRuntimeCommand, an API that runs shell commands directly inside a running AgentCore Runtime session. The API streams stdout/stderr in real time over HTTP/2 and returns an exit code, removing the need for custom in-container command orchestration. Commands execute in the same container, filesystem, and environment as the agent session and can run concurrently with agent invocations. This capability is available in 14 AWS Regions.

🤖 AWS announces general availability of AWS Partner Central agents, AI-powered agentic capabilities built on Amazon Bedrock AgentCore to accelerate partner co-selling. Agents provide pipeline insights, tailored sales plays, and next-step recommendations, and can populate CRM fields from transcripts, notes, and emails. They also identify funding eligibility, pre-fill funding requests, and are available in all commercial AWS Regions.

⚠️ Phantom Labs Research demonstrated a DNS-based exfiltration technique targeting the AWS Bedrock AgentCore Code Interpreter that bypasses expected Sandbox Mode network restrictions. Maliciously crafted files (for example, CSVs) can influence generated Python code to use DNS queries as a covert command-and-control channel. In tests, researchers executed commands, enumerated and retrieved S3 content and secrets while the environment still reported network access disabled. AWS says this is intended behavior and updated documentation; organisations should inventory AgentCore instances, tighten IAM roles and move sensitive workloads to VPC mode.

⚙️ Amazon Bedrock AgentCore Runtime now supports the Agent-User Interaction (AG-UI) protocol, enabling developers to deploy AG-UI servers that deliver real-time, interactive agent experiences into user-facing applications. AgentCore Runtime handles authentication, session isolation, and autoscaling for AG-UI workloads so teams can focus on building responsive frontends. AG-UI streams text, reasoning steps, and tool results over SSE and WebSocket and is available across fourteen AWS Regions.