AWS Morning Brief for the week of May 4th, with Corey Quinn.

Links:

• AWS Management Console now supports settings to control service and Region visibility - AWS
• Amazon CloudWatch adds visual agent configuration to the EC2 console
• AWS Announces Amazon Connect Decisions
• Amazon Connect Talent for AI-powered hiring (now available in Preview)
• Introducing Amazon EC2 R8in and R8ib instances
• Amazon OpenSearch Service now supports index-level encryption
• Amazon Redshift Serverless AI-driven scaling is now the default for new workgroups
• AWS Cost Optimization Hub now supports CSV download
• AWS KMS now tracks last usage of all KMS keys
• AWS Lambda adds support for Ruby 4.0
• AWS Marketplace Management Portal now supports bank account deletion
• Amazon Bedrock now offers OpenAI models, Codex, and Managed Agents (Limited Preview)
• Amazon CloudFront now supports invalidation by cache tag
• Introducing Amazon EC2 C8ine and M8ine instances
• Identifying security risks using AWS Cost and Usage Report data
• Amazon Q Developer end-of-support announcement
• Issue with AWS Ops Wheel (CVE-2026-6911 and CVE-2026-6912
• Issues in tough library and tuftool CLI utility
• CVE-2026-7191- Arbitrary Code Execution via Sandbox Bypass in QnABot on AWS
• Issue with FreeRTOS-Plus-TCP - MAC Address Validation Bypass and ICMP Echo Reply Integer Underflow
• CVE-2026-7424 - Integer Underflow in DHCPv6 Sub-Option Parser in FreeRTOS-Plus-TCP
• Issue with FreeRTOS-Plus-TCP - IPv6 Router Advertisement Memory Safety Issues

AWS Morning Brief for the week of April 27th, with Corey Quinn.

Links:

• Amazon CloudWatch pipelines now supports configuration of processors via AI
• Introducing the Amazon EKS Hybrid Nodes gateway for hybrid Kubernetes networking
• Amazon EKS enhances cluster governance with new IAM condition keys
• Attributed Revenue Dashboard Now Available in AWS Partner Central
• AWS Lambda functions can now mount Amazon S3 buckets as file systems with S3 Files
• Amazon CloudWatch Logs Insights introduces JOIN and sub-query commands
• AWS Lambda Durable Execution SDK for Java GA
• Amazon S3 Express One Zone now supports S3 Inventory
• Amazon S3 now supports five additional checksum algorithms
• AWS Secrets Manager extends managed external secrets to MongoDB Atlas and Confluent Cloud
• Track Amazon Bedrock Costs by Caller Identity with IAM Principal-Based Cost Allocation
• Transforming FinOps with the Latest Amazon Q Cost Capabilities
• Aurora Serverless: Faster performance, enhanced scaling, and still scales down to zero
• From developer desks to the whole organization: Running Claude Cowork in Amazon Bedrock
• Get to your first working agent in minutes: Announcing new features in Amazon Bedrock AgentCore
• Automated network incident response with AWS DevOps Agent
• Accelerate development workflows with Amazon EBS Volume Clones
• Troubleshooting Amazon S3 access denied errors using Kiro CLI
• CVE-2026-6437 - Mount Option Injection in Amazon EFS CSI Driver
• CVE-2026-6550 - Key commitment policy bypass via shared key cache in AWS Encryption SDK for Python

AWS Morning Brief for the week of April 20th, with Corey Quinn.

Links:

• Amazon CloudWatch now supports cross-region telemetry auditing and enablement rules
• Introducing Amazon EC2 C8in and C8ib instances
• Amazon Quick now supports multi-account sign-in within the same browser
• Amazon WorkSpaces Personal and Amazon WorkSpaces Core are now available in two additional AWS Regions
• AWS announces general availability of AWS Interconnect - multicloud
• Automate AWS Cost Reporting with Scheduled Dashboard Email Delivery
• Introducing Anthropic’s Claude Opus 4.7 model in Amazon Bedrock
• Introducing Amazon Bio Discovery
• CVE-2026-5429 - Kiro IDE Webview Cross-Site Scripting via Workspace Color Theme
• Issues with Amazon Athena ODBC Driver
• Issues with AWS Research and Engineering Studio (RES)
• CVE-2026-5747 - Out-of-bounds Write in Firecracker virtio-pci Transport