Amazon Detective now supports security investigations for threats detected by Amazon GuardDuty Elastic Container Service (ECS) Runtime Monitoring. Amazon Detective now provides enhanced visualizations and additional context for detections on ECS. You can use the new runtime threat detections from GuardDuty and the investigative capabilities from Detective to improve your detection and response for potential threats to your container workloads.
IAM Access Analyzer introduces custom policy checks powered by automated reasoning
AWS Identity and Access Manager (IAM) Access Analyzer now provides custom policy checks to validate that IAM policies adhere to your security standards ahead of deployments. Custom policy checks use the power of automated reasoning—security assurance backed by mathematic proof— to help security teams proactively detect nonconformant updates to policies. For example, IAM policy changes that are more permissive than their previous version. Security teams can use these checks to streamline their reviews, automatically approving policies that conform with their security standards, and inspecting more deeply when they don’t. This new kind of validation provides you higher security assurance in the cloud.
You can now manage and back up FSx for ONTAP FlexGroup volumes using the AWS Console and API
Amazon FSx for NetApp ONTAP, a service that provides fully-managed shared storage built on NetApp’s popular ONTAP file system, now allows you to create, manage, and back up FlexGroup volumes using the AWS Management Console, FSx CLI, and AWS SDK, making it even easier to manage and protect your data at-scale.
Introducing Amazon GuardDuty ECS Runtime Monitoring, including AWS Fargate
Today, AWS announces Amazon GuardDuty ECS Runtime Monitoring, an expansion of Amazon GuardDuty that introduces runtime threat detection for Amazon Elastic Container Service (Amazon ECS) workloads—including serverless container workloads running on AWS Fargate.
Amazon Inspector expands AWS Lambda code scanning with generative AI powered remediation
Amazon Inspector code scanning for AWS Lambda functions now includes assisted code remediation using generative artificial intelligence (AI) and automated reasoning. Amazon Inspector code remediation for Lambda function provides in-context code patches for multiples classes of vulnerabilities detected during security scans for AWS Lambda function. It extends the Amazon Inspector capabilities to assess custom proprietary Lambda code for security issues like injection flaws, data leaks, weak cryptography, or missing encryption based on AWS security best practices. Upon discovering vulnerabilities, Amazon Inspector provides actionable security findings, including affected code snippets and remediation suggestions. As part of supported findings, Amazon Inspector provides code patches associated with the vulnerabilities, simplifying the process of updating vulnerable code.
Announcing new enhancements to Amazon CodeWhisperer
Today, AWS announces new updates to Amazon CodeWhisperer, including support for Infrastructure as Code (IaC), AI-powered code remediation, and expanded language support for security scanning, all generally available. CodeWhisperer is also now available in Visual Studio, in preview. These updates help to enable faster and more efficient software development by offloading undifferentiated work and delivering more automation, security, efficiency, and accelerated code delivery for customers, and provides this support in more places where developers love to work.
FSx for ONTAP now supports creating Multi-AZ file systems in Shared VPC participant accounts
Amazon FSx for NetApp ONTAP now enables you to create Multi-AZ file systems in Shared VPCs from participant accounts, making it even easier for your organization to decentralize how you administer network and storage resources.
Assisted Slot Resolution with Generative AI
Amazon Lex is a service for building conversational interfaces into any application using voice and text. With Amazon Lex, you can quickly and easily build conversational bots (chatbots), virtual agents, and interactive voice response (IVR) systems. By leveraging foundation models (FMs) to enhance its natural language understanding capabilities, Lex can now resolve slot values in user utterances with greater accuracy. The Assisted Slot Resolution feature uses the advanced reasoning capabilities of FMs to improve accuracy and ultimately a better customer experience.
Announcing Conversational FAQ with generative AI for Amazon Lex (Preview)
We are pleased to offer a preview of the QnAIntent in Amazon Lex. The QnAIntent allows developers to securely connect foundation models (FM) to company data for Retrieval Augmented Generation (RAG). By providing access to company data, FMs generate more relevant, accurate, and contextual responses. The QnA Intent can be used with new or existing Lex bots to automate frequently asked questions (FAQs) through text and voice channels, such as Amazon Connect.
Amazon FSx for OpenZFS now supports on-demand data replication across file systems
Today, AWS announces on-demand data replication for Amazon FSx for OpenZFS, enabling you to easily and efficiently transfer incremental point-in-time snapshots of your volumes between file systems. On-demand data replication provides a simple and resilient way to replicate production data in a separate file system for development, experimentation, and analytics workloads.