Hava Blog and Latest News

In Cloud Computing This Week [Oct 21st 2022]

Written by Team Hava | October 21, 2022

This week's roundup of all the cloud news.


Here's a cloud round up of all things Hava, GCP, Azure and AWS for the week ending Friday October 21st 2022.

New pricing is live. You can find out more about the plan details and new flexible pricing here: https://www.hava.io/blog/pricing-and-plan-updates

To stay in the loop, make sure you subscribe using the box on the right of this page.

Of course we'd love to keep in touch at the usual places. Come and say hello on:

Facebook.      Linkedin.     Twitter.

AWS Updates and Releases

Source: aws.amazon.com

Amazon FSx for Windows is now available in the AWS Asia Pacific (Jakarta) Region

Customers in the AWS Asia Pacific (Jakarta) Region can now use Amazon FSx for Windows.

Amazon FSx makes it easy and cost effective to launch, run, and scale feature-rich, high-performance file systems in the cloud. It supports a wide range of workloads with its reliability, security, scalability, and broad set of capabilities. Amazon FSx for Windows File Server provides fully managed, highly reliable file storage built on Windows Server and accessible via the industry-standard Server Message Block (SMB) protocol. 

Amazon Braket now supports pulse-level access to study the performance of today’s quantum computers

Amazon Braket, the quantum computing service from AWS, aims to accelerate research and software development in quantum computing. This week, AWS are adding support for pulse-level access to superconducting quantum processors from Rigetti Computing and Oxford Quantum Circuits (OQC) by launching Braket Pulse, a new feature for running pulse-level quantum programs.

With this launch, Braket customers have more choice and can dive deeper in their research with the option to code their quantum programs using gates, pulses, or a combination of both.

To study and optimize the performance of today’s quantum computers, researchers often need access to the lowest level of control over the hardware in order to explore use cases such as studying noise or cross-talk, developing new and more robust gates, devising error mitigation schemes, and exploring novel quantum algorithms.

Braket Pulse enables customers to manipulate the low-level, analog signals or pulses, that control the qubits of a quantum processor. Customers can use Braket Pulse selectively within their gate-based quantum circuits by inserting blocks of pulse instructions in specific areas of the program to focus on optimizing individual operations and fine tune performance.

Amazon DevOps Guru now provides list view for resources analyzed

You can now view and filter the list of resources analyzed by Amazon DevOps Guru within the DevOps Guru console. You can view the list of resources on the ‘Analyzed resources’ page and sort and filter by resource name, DevOps Guru tag name (or tag value), CloudFormation stack name, or AWS Service name. You can optionally download the list via CSV file which also includes the Amazon Resource Names (ARN).  

Amazon DevOps Guru is an ML-powered service that makes it easier to improve an application’s operational performance and availability. By analyzing application metrics, logs, events, and traces, DevOps Guru identifies potential abnormal behaviors that deviate from normal operating patterns and creates an insight that alerts developers with issue details. When possible, DevOps Guru also provides potential remediation recommendations sent via Amazon Simple Notification Service (SNS), Amazon EventBridge, or partner integrations. 

To see the list of resources analyzed by DevOps Guru, you can navigate to the ‘Analyzed resources’ page from any of the following console locations:

  • Click the ‘Analyzed resources’ link in the ‘System health summary’ at the top right of the Amazon DevOps Guru dashboard page.
  • If you use CloudFormation stacks or tags, you can view a list of resources for a specific stack or tag by clicking on the ‘Analyzed resources’ link in the cards under ‘System health overview’.
  • Click the ‘Analyzed Resources’ link on the left navigation pane of the DevOps Guru console.

Note that the option to edit or update resources analyzed by DevOps Guru is now under ‘Edit analyzed resources’ at the top of the Analyzed Resources page. 

AWS Service Management Connector now streamlines display of AWS Service Catalog products by Account and Region in ServiceNow Service Portal

Starting this week, AWS Service Management Connector for ServiceNow (version 4.7.5) enables customers to streamline the display of AWS Service Catalog portfolios and products by Account and Region in ServiceNow Service Portal. This feature enables ServiceNow Service Portal end users to identify and drill-down to the appropriate AWS Service Catalog product if they have access to shared portfolios from multiple accounts and regions.

Previously the drilldown feature was restricted to only portfolio names. This version also includes additional filter navigator modules for open incidents in AWS Systems Manager Incident Manager integration and displays timeline events as comments on the AWS incident in user-readable format. The AWS Support integration now introduces an optional configuration to create the support cases in an intermediate table for customers who want to leverage custom business workflows for managing support cases. The AWS Service Management Connector supports latest ServiceNow releases for Tokyo(T), San Diego(S) and Rome (R).

Customers can use the AWS Service Management Connector for ServiceNow to provision AWS resources and manage operations and incident response for AWS resources. ServiceNow administrators can configure the connector to work with new or existing AWS accounts, and associate one or more AWS accounts to ServiceNow.

The connector also provides integrations with AWS Service Catalog, AWS Config, AWS Health Dashboard, AWS Systems Manager OpsCenter, AWS Systems Manager Automation, AWS Systems Manager Incident Manager, AWS Change Manager Systems Manager, AWS Support and AWS Security Hub, which helps simplify cloud provisioning, operations and resource management as well as streamline Service Management governance and oversight over AWS services.

It’s easy to get started. The AWS Service Management Connector for ServiceNow is available at no charge in the ServiceNow Store. These new features are generally available in all AWS Regions where AWS Support, AWS Service Catalog, AWS Config, AWS Systems Manager, AWS Health Dashboard, AWS Systems Manager Incident Manager and AWS Security Hub services are available. For more information, please visit the documentation on the AWS Service Management Connector.

Amazon RDS for MySQL, MariaDB and PostgreSQL now support up to 15 read replicas for 3X read capacity

Amazon Relational Database Service (RDS) for MySQL, MariaDB and PostgreSQL now support 15 read replicas per instance, including up to 5 cross region read replicas, delivering up to 3X the previous read capacity.

Amazon RDS Read Replicas provide enhanced performance and durability for Amazon RDS database (DB) instances. They make it easy to elastically scale out beyond the capacity constraints of a single DB instance for read-heavy database workloads.

You can create one or more replicas of a given source DB instance and serve high-volume application read traffic from multiple copies of your data, thereby increasing aggregate read throughput. For disaster recovery, read replicas can be promoted when needed to become standalone DB instances.

IAM Identity Center adds session management features for improved user experience and cloud security

Using AWS IAM Identity Center (successor to AWS Single Sign-On), you now have more control over user session management. You can use the console to set customized session lengths (up to 7 days), based on your organization’s security requirements and desired end-user experience. With this feature, you can also terminate sessions, enabling you to manage sessions that are no longer needed or potentially suspicious.

Now, you can set the session duration between 15 minutes and 7 days (default 8 hours), enabling you to tune the duration in which signed-in users can access the AWS user portal and AWS accounts before authenticating again. In addition to supporting custom session durations up to 7 days, the new feature also enables you to look up active user portal sessions by user and terminate sessions as needed to remain secure against unwanted access.

For example, you can shut down sessions for recently terminated workforce members, sessions a user failed to sign out of on a second device, or sessions that you have determined have suspicious activity.

IAM Identity Center helps you securely create or connect your workforce identities and manage their access centrally across AWS accounts and applications. IAM Identity Center is the recommended approach for workforce authentication and authorization on AWS for organizations of any size and type.

The service is built on and included as part of AWS IAM at no additional cost in the AWS Regions listed here. To learn more about IAM Identity Center, see the feature page.


Amazon Aurora MySQL supports faster export to S3

This week AWS announced up to 10x faster exports to Amazon S3 for snapshot exports for Amazon Aurora MySQL-Compatible Edition for MySQL 5.7 and 8.0. The performance improvement is automatically applied to all types of database snapshot exports, including manual snapshots, automated system snapshots, and snapshots created by the AWS Backup service.

With this capability, AWS customers can export data up to 10x faster from an Amazon Aurora database and store it in an Amazon S3 bucket using AWS CLI or AWS Management Console. After the data is exported, they can analyze the exported data using Amazon Athena and/or other tools and services. The export process runs in the background and doesn't affect the performance of active database instances.

Amazon Aurora is designed for unparalleled high performance and availability at global scale with full MySQL and PostgreSQL compatibility. It provides built-in security, continuous backups, serverless compute, up to 15 read replicas, automated multi-Region replication, and integrations with other AWS services.

Amazon CloudFront adds fields for origin latency and ASN in real-time logs for more granular insights

Amazon CloudFront now offers three additional data fields in CloudFront real-time logs: Origin first-byte latency, Origin last-byte latency, and autonomous system number (ASN). CloudFront real-time logs contain detailed information about requests delivered by CloudFront such as the HTTP status codes of the response, or whether the response was cached.

With the three new data fields, customers can get more granular insights on CloudFront performance while analyzing real-time logs, or in the dashboards created using the logs. The Origin first-byte latency provides the time taken in seconds by the origin server to respond back with the first byte of the response.

The Origin last-byte latency indicates the time taken in seconds by the origin server to respond back with the last byte of the response. ASN is a unique number that identifies the network, such as an internet service provider (ISP) network, that provides the viewer IP address. 

AWS Step Functions adds new execution observability features for Express Workflows

AWS Step Functions now provides a new console experience for viewing and debugging your Express Workflow executions that makes it easier to trace and root cause issues in your executions.

AWS Step Functions is a low-code, visual workflow service that developers can use to help build distributed applications, automate IT and business processes, and build data and machine learning pipelines using AWS services. Express Workflows are ideal for high-volume event processing workloads such as IoT data ingestion, streaming data processing and transformation, and high-volume microservices orchestration.

Now, Step Functions makes it easier to navigate through the details of your Express workflow executions in the AWS Console to identify issues, dive deeper into the context of a failure, and visually present information in a way that makes sense for you.

You can select from three different views for your workflow execution including a navigable workflow graph, a state transition table and the events table. You can search and filter your executions and the events in your executions using unique attributes such as state name and error type. Errors are now easier to root cause as the experience highlights the reason for failure in a workflow execution.

Announcing Remote Reboot for AWS Panorama

AWS Panorama customers can now remotely reboot their connected AWS Panorama Appliance from the AWS console or by using the AWS Panorama SDK. Before this launch, customers were only able to reboot Panorama Appliance by physically pressing the reboot button on the appliance.

As customers deploy Panorama Appliances across multiple sites, they want a scalable way to reboot the appliances from one central place. Remote reboot makes it easier for customers to recover from application or device issues and ensures high application uptime without needing to be physically present onsite. To learn more about Remote Reboot for AWS Panorama, click here.

AWS Panorama is a collection of machine learning (ML) devices and a software development kit (SDK) that brings computer vision (CV) to on-premises internet protocol (IP) cameras. With AWS Panorama, customers can use compute power at the edge (without streaming video to the cloud) to improve their operations by automating visual inspection tasks like improving supply chain logistics, optimizing traffic management, and evaluating manufacturing quality.


Amazon SQS announces increased throughput quota for FIFO High Throughput (HT) mode to up to 6,000 Transactions Per Second (TPS)

Amazon Simple Queue Service (SQS) announces the general availability of an increased default quota for a high throughput mode for FIFO queues, allowing you to process up to 6,000 transactions per second, per API action in: US East (Ohio), US East (N. Virginia), US West (Oregon), Europe (Ireland), Europe (Frankfurt) regions. For Asia Pacific (Mumbai), Asia Pacific (Singapore), Asia Pacific (Sydney), and Asia Pacific (Tokyo) regions, the default throughput quota has been increased to 3,000 transactions per second, per API action.

This is a twofold increase compared to the current SQS FIFO queue throughput quota. For a detailed breakdown of default throughput quotas per region, see SQS documentation.

Amazon SQS is a fully managed message queuing service that enables you to decouple and scale microservices, distributed systems, and serverless applications. Amazon SQS offers two types of message queues, standard and FIFO. Standard queues offer maximum throughput, best-effort ordering, and at-least-once delivery.

FIFO queues support message groups to process distinct ordered message bundles and are designed to process messages only once, in the exact order that they are sent.

The increase of the default quotas for high throughput mode for FIFO queues enables customers to send and receive messages at a 2 times higher rate than was previously supported. The increased throughput quota makes it easy for developers to build applications that synchronously process a high volume of business-critical transactional data without writing complex error handling and message ordering code.

Example use cases include bank transaction logs, stock tickers, flight trackers, price updates, news broadcasting, and inventory management.

Getting started with the high throughput mode for FIFO queues is easy. Simply navigate to the Amazon SQS console and enable the high throughput FIFO option for either a new or existing FIFO queue. You can also enable it through the SQS API.

The high throughput mode for FIFO queues is available in all commercial and AWS GovCloud (US) Regions where Amazon SQS is available. To learn more about Amazon SQS FIFO queues, see the Amazon SQS FAQ and the Amazon SQS Developer Guide.

Announcing the FreeFormInput Slot Type for Amazon Lex

Amazon Lex is a service for building conversational interfaces into any application using voice and text. With Amazon Lex, you can quickly and easily build sophisticated, natural language, conversational bots (“chatbots”), virtual agents, and IVR systems. Today, Amazon Lex launches the FreeFormInput built-in slot type.

You can easily design bots to capture free form input from your customers. The new built-in slot type can recognize strings made up of words or characters. The resolved value is the complete free form entry provided by the user.

For example, following a phone conversation, you may need to collect the caller’s feedback. With the FreeFormInput built-in slot type, bot builders can easily capture commentary, which they can analyze later. The FreeFormInput slot type is available in all locales and regions where Lex operates. It can be accessed via both Lex V2 console and SDKs.

Announcing Camera Stream Pause and Resume on AWS Panorama

AWS Panorama customers can now pause and resume existing camera stream connections within applications deployed on the AWS Panorama Appliance using the AWS Panorama APIs. As customers deploy Panorama Appliances across multiple sites, they want a scalable way to manage individual camera streams without the overhead of a full application deployment.

Using this capability, customers can achieve failover between redundant camera streams, thereby meeting their high availability requirements. They can also dynamically swap between multiple camera streams to meet their business needs. To learn more, visit the AWS Panorama documentation.

AWS Panorama is a collection of machine learning (ML) devices and a software development kit (SDK) that brings computer vision (CV) to on-premises internet protocol (IP) cameras. With AWS Panorama, companies can use compute power at the edge (without streaming video to the cloud) to improve their operations, by automating visual inspection tasks like improving supply chain logistics, optimizing traffic management, and evaluating manufacturing quality.

The AWS Panorama service is available in the US East (N. Virginia), US West (Oregon), Canada (Central), Europe (Ireland), and Asia Pacific (Sydney and Singapore) regions. The AWS Panorama Appliance is available for purchase on Amazon.com, Amazon Business and AWS Elemental in the United States, Canada, Mexico, Australia, New Zealand, Singapore, New Zealand, Malaysia, United Kingdom, and the European Union.

Amazon SES now offers new model to simplify provisioning and managing dedicated IPs

Amazon Simple Email Service (Amazon SES) announces the launch of a new model of Dedicated IPs (managed) which helps customers to grow, manage and maintain their sending reputation via exclusive IP addresses without all of the heavy lifting associated with provisioning and managing dedicated IPs.

Amazon SES is a scalable, cost-effective, and flexible cloud-based email service that allows digital marketers and application developers to send marketing, notification, and transactional emails from within any application.

Compared to using traditional shared IPs, leasing dedicated IPs is a common way to help increase delivery rate because it ensures customers are the sole exclusive sender and do not share their IPs with other senders. SES offers dedicated IP addresses for lease and customers pay for per IP address, which until today, required manual setup and management.

The new managed feature will help customers to quickly and easily provision dedicated IP addresses and maintain their sending reputation. The entire process of leasing, warming-up, scaling and managing email sending on exclusive IP addresses is all handled by Dedicated IPs (managed).

SES uses recent sending performance and historical forecast models to continuously re-adjust the sending volume and routing across the IP space with the goal of maximizing reputation and minimizing the impact of undelivered or bounced emails.

With this launch, customers are automatically provided with the correct amount of dedicated IPs that they require and complete the warmup quicker so that they don’t pay more than they need to and can start sending their email quickly. Dedicated IPs (managed) helps reduce the overheads associated with email sending via a dedicated IP.

Customers can access Dedicated IPs (managed) via the AWS console and public APIs. Customers can get started with dedicated IPs managed with one click in the console, and will be guided through the setup process to help them start sending quickly.

AWS Control Tower now available in GovCloud (US) Regions

AWS GovCloud (US) enables U.S. government agencies and contractors to move more sensitive workloads into the cloud by addressing their specific regulatory and compliance requirements. By expanding AWS Control Tower to the AWS GovCloud (US) Regions, AWS Control Tower now provides customers on the GovCloud (US) Region and their partners the ability to architect their secure cloud solutions.

Due to the secure and regulated nature of the AWS GovCloud (US) Regions, certain AWS Control Tower functionality is different or may not be available in the AWS GovCloud (US) Regions. For details, please refer to the documentation on AWS Control Tower in GovCloud (US) Regions.

AWS Control Tower offers the easiest way to set up and govern a new, secure, multi-account AWS environment based on AWS best practices. To learn more, visit the AWS Control Tower homepage or see the AWS Control Tower User Guide. For a full list of AWS Regions where AWS Control Tower is available, see the AWS Region Table.

Amazon WorkDocs adds support for Apple Silicon MacBooks

This week Amazon WorkDocs, a fully managed product for creating, sharing, and enriching digital content, announced the General Availability of an Apple Silicon (M1, M2) compatible WorkDocs Drive. Apple Silicon support for WorkDocs makes it easy for customers with Apple Silicon MacBooks to install and sync WorkDocs files on their devices.

Amazon WorkDocs Drive is a mounted drive that enables customers to open and work with Amazon WorkDocs files on their desktops. Customers can copy a shareable link, lock, unlock, or open a file in the web client with one click. WorkDocs Drive automatically syncs any changes made to Amazon WorkDocs and vice versa.

WorkDocs Drive is available to anyone with a WorkDocs subscription. For more information, see the Amazon WorkDocs web page. To get started with WorkDocs Drive, download the installer by visiting the Amazon WorkDocs Client Downloads page and selecting WorkDocs for Mac (Apple Silicon).

Amazon WorkDocs adds support for Apple Silicon MacBooks

This week Amazon WorkDocs, a fully managed product for creating, sharing, and enriching digital content, announced the General Availability of an Apple Silicon (M1, M2) compatible WorkDocs Drive. Apple Silicon support for WorkDocs makes it easy for customers with Apple Silicon MacBooks to install and sync WorkDocs files on their devices.

Amazon WorkDocs Drive is a mounted drive that enables customers to open and work with Amazon WorkDocs files on their desktops. Customers can copy a shareable link, lock, unlock, or open a file in the web client with one click. WorkDocs Drive automatically syncs any changes made to Amazon WorkDocs and vice versa.

WorkDocs Drive is available to anyone with a WorkDocs subscription. For more information, see the Amazon WorkDocs web page. To get started with WorkDocs Drive, download the installer by visiting the Amazon WorkDocs Client Downloads page and selecting WorkDocs for Mac (Apple Silicon).

Announcing AWS Parameters and Secrets Lambda Extension

This week, AWS launched the AWS Parameters and Secrets Lambda Extension, a convenient method for AWS Lambda users to retrieve parameters from AWS Systems Manager Parameter Store and secrets from AWS Secrets Manager. AWS Lambda customers can leverage this extension to improve their application performance as it decreases the latency and the cost of retrieving parameters and secrets.

Previously, customers had to initialize either the core library of a service or the entire service SDK inside a Lambda function for retrieving secrets and parameters, now they can simply use the extension. This lightweight and easy-to-use extension caches parameters and secrets, and persists them throughout the lifecycle of the Lambda function. The extension runs inside an isolated execution environment using the same permissions as the role of the user running the Lambda function.

Amazon Connect Wisdom now delivers improved machine learning capabilities

Amazon Connect Wisdom now delivers improved machine learning capabilities to continuously understand issues throughout a call and to deliver the right knowledge article to contact center agents. Wisdom analyzes contact center calls in real-time and proactively delivers agents the information they need to solve customer issues, improving agent productivity and caller satisfaction. 

With these enhancements that were developed after training machine learning models on hundreds of thousands of contacts, Wisdom is able to more accurately distinguish a caller's issue from the rest of the conversation and continuously detects new issues a caller may raise (for example, distinguishing pleasantries such as “we got a lot of snow this weekend” from weather-related issues such as “my flight was cancelled because of snow and I need to be re-booked”).

In addition, Wisdom's new machine learning models have a deeper, semantic understanding of the issues detected and how they relate to your organization's own knowledge articles (for example, if your knowledge articles only refer to “potential fraud” and a caller asks about or an agent manually searches for “unauthorized charge,” Wisdom can understand those terms refer to the same thing and return the most relevant article for the issue.). 

Amazon SageMaker Canvas announces Quick build support for time-series forecast models

Amazon SageMaker Canvas announces Quick build support for time-series forecasting models, enabling faster prototyping and experimentation to select the best performing machine learning (ML) model. SageMaker Canvas is a visual point-and-click interface that enables business analysts to generate accurate machine learning (ML) predictions on their own — without requiring any machine learning experience or having to write a single line of code.

SageMaker Canvas allows you to train ML models through two different methods; 1/ Quick build that produces a trained model in less than 20 minutes, prioritizing speed over accuracy, and 2/ Standard build that produces a trained model in under 4 hours, prioritizing accuracy over latency after going through the complete ML cycle including pre-processing, feature engineering, and exploring the hyper-parameter space to select the best model.

Previously, ML models for time-series forecasting use cases in Canvas supported only Standard build models. Starting today, you can also use Quick build models to experiment rapidly, generate predictions, and validate hypotheses faster for time-series forecasting data.

Announcing new AWS Amplify Library for Swift, now with support for both iOS and macOS

This week, AWS are excited to announce the general availability of Amplify Library for Swift (previously Amplify iOS). This release allows Swift developers to easily build cloud-connected iOS apps. Since its Developer Preview release in April 2022, AWS have re-written their APIs to support idiomatic Swift features like async/await that makes it easier for developers to implement structured concurrency.

AWS also want to take this opportunity to introduce beta availability of macOS support--one of their most requested features--with watchOS and tvOS support coming in future releases. As with the Preview, the Amplify Library for Swift is open source on GitHub, and AWS deeply appreciate the feedback they have gotten from the community.

Starting this week, developers can use Amplify Library for Swift via the Swift Package Manager to build apps for iOS and macOS (currently in beta) platforms with Auth, Storage, Geo and more features. Developers will continue to have access to the same Command Line Interface (CLI) tools to configure and manage their cloud resources. With the Amplify Library for Swift, you will also have direct access to the underlying AWS SDK for Swift through the escape hatch to unlock additional capabilities from AWS services.

Announcing Red Hat Enterprise Linux (RHEL) Workstation on AWS

AWS are announcing the launch of Red Hat Enterprise Linux (RHEL) Workstation for accelerated GPU instances on AWS Marketplace. RHEL Workstation is a cloud-based remote desktop solution that allows end users from anywhere in the world to access a workstation instance to do their work and collaborate with team members.

RHEL Workstation is designed for advanced Linux users working on more powerful hardware, and is optimized for activities such as animation, computer-aided design and engineering, scientific research, medical imaging etc. It is delivered via NICE DCV, a secure, high-performance remote display protocol.

RHEL Workstation on AWS allows customers to provide high-end hardware capabilities to a distributed workforce, without the need for large capital investments in expensive workstation equipment.

The RHEL Workstation Amazon Machine Images (AMIs) are built on RHEL version 8.6 with NICE DCV remote display software and support both Tesla and GRID NVIDIA drivers. RHEL Workstation is available on AWS Marketplace for GPU Accelerated instance families including the G3, G4dn, G5, P2, and P3 instances for Tesla drivers and G3, G4dn, G5, and P3 instances for GRID drivers.

RHEL Workstation is now available in all AWS Commercial regions, and AWS provides tier 1 and tier 2 support for this product. To get started, search for RHEL Workstation on AWS Marketplace or in the EC2 console AMI Catalog. 

AWS Snowball Edge Compute Optimized delivers double the compute capacity and is now fully SSD NVMe storage

AWS announced an enhanced Snowball Edge Compute Optimized with expanded compute, memory and storage options. The AWS Snowball Edge Compute Optimized device doubled the compute capacity up to 104 vCPUs, doubled the memory capacity up to 416GB RAM, and is now fully SSD with 28TB NVMe storage.

AWS Snowball Edge Compute Optimized is a secure, rugged device that brings AWS computing and storage capabilities, such as Amazon EC2, Amazon EBS, Amazon S3, AWS IoT Greengrass, AWS Lambda functions, and AWS IAM to your rugged edge environments.

AWS Snowball Edge is available in two device types. Snowball Edge Compute Optimized with more computing capabilities, suited for higher performance workloads, and Snowball Edge Storage Optimized with more storage, which is suited for large-scale data migrations and capacity-oriented workloads.

You can use Snowball Edge devices in environments with intermittent connectivity (like manufacturing, industrial, and transportation) or in extremely remote locations (like military or maritime operations). Snowball Edge Compute Optimized capabilities now include double the available compute to 104 vCPUs and 416GB RAM with an all SSD (28TB NVMe) storage architecture for Amazon S3 compatible object storage or EBS-compatible block volumes.

The updated Snowball Edge Compute Optimized device is ideal when you need dense compute resources to run complex workloads such as AI/ML inference, video analytics, or to deploy private 5G wireless networks at the rugged, mobile edge, and in high-vibration environments on mobile platforms such as trucks, aircraft or ships.

Amazon Interactive Video Service now includes web and mobile SDKs for IVS stream chat

Amazon Interactive Video Service (Amazon IVS) now provides SDKs for stream chat with support for web, Android and iOS. The Amazon IVS stream chat SDKs support common functions for chat room resource management, sending, and receiving messages, and managing chat room participants.

Visit the Amazon IVS chat documentation to learn more. Using the Amazon IVS stream chat SDKs incurs no additional charges beyond standard Amazon IVS usage costs.

Amazon IVS stream chat is built for large scale, real-time messaging conversations and handles the natural variation in message volume without customers needing to manage the underlying infrastructure. With this feature, customers can build chat into their web and mobile applications to drive engagement with thousands of users at once.

Amazon Interactive Video Service (Amazon IVS) is a managed live streaming solution that is designed to be quick and easy to set up, and ideal for creating interactive video experiences. Send your live streams to Amazon IVS using the broadcast SDKs or standard streaming software such as Open Broadcaster Software (OBS) and the service is designed to provide everything you need to make low-latency live video available to any viewer around the world, letting you focus on building interactive experiences alongside the live video.

Amazon Elastic File System (Amazon EFS) is now available in the Middle East (UAE) region.

Amazon Elastic File System (Amazon EFS) is now available in the Middle East (UAE) Region.

Amazon EFS is a serverless, fully elastic file system that makes it easy to set up, scale, and cost-optimize file storage in the AWS Cloud. It is built to scale on demand to store petabytes of data, growing and shrinking automatically as you add and remove files, eliminating the need to provision and manage capacity to accommodate growth.

PostgreSQL 15 Release Candidate 2 is now available in Amazon RDS Database preview environment

Amazon RDS for PostgreSQL 15 Release Candidate 2 (RC2) is now available in the Amazon RDS Database Preview Environment, allowing you to test the release candidate of PostgreSQL 15 on Amazon RDS for PostgreSQL. You can deploy PostgreSQL 15 RC2 for development and testing in the Amazon RDS Database Preview Environment without the hassle of installing, provisioning, and managing the database. 

The PostgreSQL community released PostgreSQL 15 RC2 on October 6, 2022. New features in PostgreSQL 15 RC2 include the SQL standard "MERGE" command for conditional SQL queries, performance improvements for both in-memory and disk-based sorting, and support for two-phase commit and row/column filtering for logical replication. The PostgreSQL 15 RC2 release also adds support for server-side compression with Gzip, LZ4, or Zstandard (zstd) using pg_basebackup. Please refer to the PostgreSQL community announcement for more details about the release.

The Amazon RDS Database Preview Environment supports both Single-AZ and Multi-AZ deployments on the latest generation of instance classes, and can be encrypted at rest using KMS keys. Amazon RDS Database Preview Environment database instances are retained for a maximum period of 60 days and are automatically deleted after the retention period. Amazon RDS database snapshots that are created in the preview environment can only be used to create or restore database instances within the preview environment. You can use standard PostgreSQL dump and load functionality to import or export your databases from the preview environment.

Amazon Corretto October 2022 quarterly updates

On October 18th, 2022 Amazon announced quarterly security and critical updates for Amazon Corretto Long-Term Supported (LTS) versions of OpenJDK. Corretto 19.0.1, 17.0.5, 11.0.17, 8u352 are now available for download. Amazon Corretto is a no-cost, multi-platform, production-ready distribution of OpenJDK.

Click on the Corretto home page to download Corretto 8, Corretto 11, Corretto 17, or Corretto 19. You can also get the updates on your Linux system by configuring a Corretto Apt or Yum repo

Amazon Detective helps reduce time to investigate Amazon GuardDuty findings by grouping related findings

Starting this week, Amazon Detective automatically groups related GuardDuty findings to help security analysts reduce triage time and create a more comprehensive security investigation.

Detective uses machine learning (ML) to group related GuardDuty findings that in isolation may have been ignored but together show the lifecycle of an attack, which can help security analysts identify advanced threats more easily.

Available under the Summary page, Detective shows groups of related GuardDuty findings with severity, all affected AWS accounts, and resources. In addition, Detective maps the evolution of findings to tactics, techniques, and procedures (TTP) from the MITRE ATT&CK framework - a well adopted framework for security and threat detection.

New FreeRTOS Long Term Support version released

This week, AWS are excited to announce the second release of FreeRTOS Long Term Support (LTS) - FreeRTOS 202210.00 LTS. This release includes new libraries such as AWS IoT Fleet Provisioning and Cellular LTE-M Interface for easier device provisioning and cellular connectivity. It also includes coreMQTT and FreeRTOS-Plus-TCP libraries with improved modularity and robustness.

All libraries included in this FreeRTOS LTS version, summarized in this post, will receive security and critical bug fixes until October 2024. With an LTS release, you can continue to maintain your existing FreeRTOS code base and avoid any potential disruptions resulting from FreeRTOS version upgrades.

Similar to the previous FreeRTOS LTS release, FreeRTOS 202210.00 LTS includes libraries that have been validated for memory safety with the C Bounded Model Checker (CBMC) automated reasoning tool to help mitigate code security issues such as buffer overflow.

In addition, all LTS libraries have undergone certain code quality checks including MISRA-C compliance and Coverity static analysis to help improve code safety, portability, and reliability in embedded systems (see LTS Code Quality Checklist).

The support period for the previous LTS release will end on March-2023, providing you a six-month overlap between the LTS releases for easy migration of your project. See the migration guide and corresponding validation tests to upgrade your project to FreeRTOS 202210.00 LTS.

If you prefer not to upgrade and want to continue receiving critical fixes on the previous LTS version beyond its expiry, you can consider the FreeRTOS Extended Maintenance Plan.

AWS Database Migration Service now supports C6i and R6i instances

AWS Database Migration Service (AWS DMS) now supports Amazon EC2 C6i and R6i instance types. These instances are powered by 3rd Generation Intel Xeon Scalable processors with an all-core turbo frequency of 3.5 GHz, offering up to 15% better compute price performance over comparable Generation5 instances for a wide variety of workloads, and always-on memory encryption using Intel Total Memory Encryption (TME).

Designed for a wide variety of workloads, C6i and R6i instances are built on the AWS Nitro System, a combinationof dedicated hardware and lightweight hypervisor, which delivers practically all of the compute and memory resources of the host hardware to your instances.

C6i instances are an ideal fit for compute-intensive workloads and R6i instances are an ideal fit for memory intensive workloads. To meet customer demands for increased scalability, these instances provide new 32xlarge size with 128 vCPUs, 33% more than the largest Generation5 instance. They also give customers up to 50 Gbps of networking speed and 40 Gbps of bandwidth to the Amazon Elastic Block Store, twice that of Generation5 instances.


Refit transforms to prepare data at scale with Amazon SageMaker Data Wrangler

This week, AWS are excited to announce support to refit transforms with Amazon SageMaker Data Wrangler. To make data usable by algorithms such as XgBoost, data scientists must transform non-numeric values to numeric values using transforms such as one-hot encoding.

Since transforms like one-hot encoding depend on the data, these transforms are frequently referred to as fitted transforms. These transforms must be updated or re-fitted to account for changes in the data as data continues to change over time. Additionally, when working on a sample data set, transforms must be updated to account for changes between a sample data set and the larger data set.

Use of transforms like one-hot encoding generates additional information, which needs to be tracked and captured in the data preparation pipeline. Omitting or incorrectly tracking this information can lead to errors in the data preparation process.

Without support to refit transforms, many data scientists did not have an easy way to specify when to use a fitted version of a transform or to refit their transform on new data. Data scientists also lacked an easy way to generate updated versions of their transformation pipelines when refitting on new datasets. 

Data Wrangler now tracks fitted transforms in data flows for all applicable transforms. These fitted transforms can now be used to more easily prepare new data as required. Users can specify when they want to re-use transforms or refit new transforms on their data.

The refit feature is available both in the Data Wrangler visual interface when launching a Data Wrangler processing job and also within the create job notebook. Simply select “refit” under “trained parameters” in the create job workflow to refit transforms in your flow. Data Wrangler will also automatically generate a new flow file containing updated values for refit transforms.

Announcing increased AWS IAM Identity Center default quota values

AWS IAM Identity Center (successor to AWS Single Sign-On) now supports higher default quotas to help you scale your environment. With the increased quota you can create and assign up to 2,000 permission sets in an Identity Center instance.

You can also assign up to 100,000 users and 100,000 groups to as many as 3,000 applications and accounts (combined) that are accessible via the AWS access portal.

Starting this week, increased default quota’s for IAM Identity Center are available in all regions where IAM Identity Center is supported.

Google Cloud Releases and Updates
Source: cloud.google.com


Anthos Service Mesh

VPC-SC for managed Anthos Service Mesh will soon be generally available (GA) in the rapid channel. Older versions of the istioctl support tool may not be compatible with the enhanced security checks. To ensure compatibility, download the latest version of istioctl.

Apigee Integrated Portal

When reusing your portal custom domain with other sites, the cookies for the domain can get larger. This fix allows you to send cookies up to 16K in size, up from the previous 8K limit.

Pressing the enter button in the input field of Portals > Accounts > Authentication > Account creation & sign in no longer opens a file explorer window.

The email notification field for new account creation can be only a single email address, and not multiple email addresses separated by a delimiter (ie , space or tab). This fix adds validation on the client side to enforce this limitation.


Assured Workloads

The Canada Regions and Support compliance regime is now generally available.


Remote functions, which let you invoke functions from Cloud Functions or Cloud Run in your Google Standard SQL queries, are now generally available (GA).

  • Update cloud client dependencies (#2335) (f8053d7)
  • Update cloud client dependencies (#2337) (1194eac)
  • Update dependency com.google.api.grpc:proto-google-cloud-bigqueryconnection-v1 to v2.5.6 (#2336) (a86c759)

The following supported default parsers have changed. Each is listed by product name and ingestion label, if applicable.

  • 1Password (ONEPASSWORD)
  • Accellion (ACCELLION)
  • Akamai Cloud Monitor (AKAMAI_CLOUD_MONITOR)
  • AWS Cloudtrail (AWS_CLOUDTRAIL)
  • BeyondTrust (BOMGAR)
  • BeyondTrust Secure Remote Access (BEYONDTRUST_REMOTE_ACCESS)
  • Bitdefender (BITDEFENDER)
  • Blue Coat Proxy (BLUECOAT_WEBPROXY)
  • Carbon Black (CB_EDR)
  • CIS Albert Alerts (CIS_ALBERT_ALERT)
  • Cisco FireSIGHT Management Center (CISCO_FIRESIGHT)
  • Cisco ISE (CISCO_ISE)
  • Cisco Meraki (CISCO_MERAKI)
  • Cloudflare (CLOUDFLARE)
  • CrowdStrike Detection Monitoring (CS_DETECTS)
  • CrowdStrike Falcon (CS_EDR)
  • CyberArk (CYBERARK)
  • Darktrace (DARKTRACE)
  • Forescout NAC (FORESCOUT_NAC)
  • GCP Cloud Audit (N/A)
  • GCP Load Balancing (GCP_LOADBALANCING)
  • Google Chrome Browser Cloud Management (CBCM) (N/A)
  • IBM Guardium (GUARDIUM)
  • Kaspersky AV (KASPERSKY_AV)
  • Linux Auditing System (AuditD) (AUDITD)
  • Microsoft Azure Resource (AZURE_RESOURCE_LOGS)
  • Microsoft Defender for Endpoint (MICROSOFT_DEFENDER_ENDPOINT)
  • Microsoft Graph API Alerts (MICROSOFT_GRAPH_ALERT)
  • Microsoft IIS (IIS)
  • Microsoft Powershell (POWERSHELL)
  • Netfilter IPtables (NETFILTER_IPTABLES)
  • Netscout Arbor Sightline (ARBOR_SIGHTLINE)
  • Okta (OKTA)
  • Oracle (ORACLE_DB)
  • Palo Alto Networks Firewall (PAN_FIREWALL)
  • Palo Alto Prisma Access (PAN_CASB)
  • pfSense (PFSENSE)
  • PostFix Mail (POSTFIX_MAIL)
  • Proofpoint Email Filter (PROOFPOINT_MAIL_FILTER)
  • Pulse Secure (PULSE_SECURE_VPN)
  • Qualys VM (QUALYS_VM)
  • Sentinelone Alerts (SENTINELONE_ALERT)
  • SentinelOne EDR (SENTINEL_EDR)
  • Symantec Endpoint Protection (SEP)
  • Sysdig (SYSDIG)
  • Tanium Integrity Monitor (TANIUM_INTEGRITY_MONITOR)
  • Varonis (VARONIS)
  • VyOS Open Source Router (VYOS)

For details about changes in each parser, see Supported default parsers.

Cloud Monitoring

Logs panels now display log entries on rows with separate columns for severity, the timestamp, and a summary of the log entry. You can click the View log details button to view the JSON-formatted representation of a log entry. For more information, see View logs on a custom dashboard.

Cloud Natural Language API

Natural Language Content Classification v2 model is now in Public Preview. This model supports an expanded taxonomy with 1091 content categories and 11 languages. The model is distilled from a Large Language Model with improved performance over the v1 offering.

Cloud Spanner

The number of concurrent database restore operations per instance that Cloud Spanner supports has increased from one to five. For more information, see Backup and restore limits.

The following new generally available features help you identify and troubleshoot high latencies in specific databases:

Cloud SQL for PostgreSQL

The rollout of the following PostgreSQL minor versions, extension versions, and plugin versions is currently underway:

Minor versions

  • 10.21 is upgraded to 10.22.
  • 11.16 is upgraded to 11.17.
  • 12.11 is upgraded to 12.12.
  • 13.7 is upgraded to 13.8.
  • 14.4 is upgraded to 14.5.

Extension and plugin versions

  • plv8 is upgraded from 3.1.2 to 3.1.4.
  • wal2json is upgraded from 2.3 to 2.4.
  • pgTAP is upgraded from 1.1.0 to 1.2.0.
  • PostGIS is upgraded from 3.1.4 to 3.1.7.

In addition, this rollout introduces the following changes to collation support:

  1. The C.UTF-8 collation is renamed to C.utf8. The original name is supported as an alias of the new name.
  2. The following collations aren't supported anymore:

    • as_IN.utf8
    • az_AZ.utf8
    • ca_ES.utf8@valencia
    • eo.utf8
    • ia
    • iw_IL
    • iw_IL.utf8
    • pap_AN
    • tt_RU.utf8
    • tt_RU.utf8@iqtelif

If you use a maintenance window, then the updates to the minor, extension, and plugin versions happen according to the timeframe that you set in the window. Otherwise, the updates occur within the next few weeks.

The new maintenance version is [PostgreSQL version].R20221017.01_00. To learn how to check your maintenance version, see Self service maintenance. To find your maintenance window or to manage maintenance updates, see Find and set maintenance windows.

Compute Engine

Generally available: You can resize an existing hardware resource commitment and split it into smaller commitments to closely monitor and manage portions of one large commitment in the form of smaller individual commitments. You can now also split your commitments by using the Google Cloud Console. For more information, see Splitting commitments.

Generally available: Accelerator-optimized (A2 ultraGPU) machine types with their attached A100 80GB GPUs are now available in the following regions and zones:

  • Iowa, North America: us-central1-c
  • Ashburn, Virginia, North America: us-east4-c

The incorrect quota limits displayed in the Cloud console in the me-west1 region have been resolved.

Config Controller

Config Controller Autopilot is now available for preview. To learn more, see Set up Config Controller.

Config Controller now uses the following versions of its included products:


Data exploration workbench (Explore) is generally available (GA). Explore provides a fully-managed, serverless data exploration experience powered by fully-governed collaboration, one-click scheduling, and interactive querying using Spark SQL scripts and Jupyter notebooks.

Deep Learning Containers

M98 Release

  • Upgraded JupyterLab from 3.2 to 3.4.
  • Upgraded R from 4.1 to 4.2.
  • Miscellaneous bug and display fixes.
  • Regular package updates.

Deep Learning Vm Images

M98 Release

  • Upgraded JupyterLab from 3.2 to 3.4.
  • Upgraded R from 4.1 to 4.2.
  • Removed the requirement to have the compute.instances.get permission in the Service Account attached to the VM introduced in m97.
  • Added support for the notebook-enable-debug metadata flag for JupyterLab low level debugging, which sets: c.Application.log_level = 0. The default value is 30.
  • Added support for the disable-check-xsrf metadata flag, which sets: c.ServerApp.disable_check_xsrf = True. The default value is false.
  • Fixed a bug in which Cloud Marketplace was deploying an older version of Deep Learning VM images.
  • Miscellaneous bug and display fixes.
  • Regular package updates


Eventarc triggers for Workflows is generally available (GA).


count() queries now available in Preview.


GKE cluster versions have been updated.

New versions available for upgrades and new clusters

The following Kubernetes versions are now available for new clusters and for opt-in control plane upgrades and node upgrades for existing clusters. For more information on versioning and upgrades, see GKE versioning and support and Upgrades.


Security Command Center

Rapid Vulnerability Detection, a built-in service of Security Command Center Premium, is now available in Preview.

Rapid Vulnerability Detection is a zero-configuration network and web application scanner that detects weak credentials, incomplete software installations, and other critical vulnerabilities that have a high likelihood of being exploited.

For more information, see Rapid Vulnerability Detection conceptual overview.

Vertex AI Workbench

M98 Release

The M98 release of Vertex AI Workbench managed notebooks includes the following:

  • Upgraded Go from 1.16.5 to 1.19.2.
  • Upgraded R from 4.1 to 4.2.
  • Upgraded JupyterLab from 3.2 to 3.4.
  • Miscellaneous bug and display fixes.
  • Added a fix for the BigQuery SQL editor to run queries correctly in non-US locations.
  • Regular package updates


Support for Eventarc triggers for Workflows is generally available (GA).

Microsoft Azure Releases And Updates
Source: azure.microsoft.com


Generally available: SFTP support for Azure Blob Storage

Azure Blob Storage now supports provisioning an SFTP endpoint with just one click.

General availability: Azure Premium SSD v2 Disk Storage

Premium SSD v2 is the next generation Azure Premium SSD Disk Storage. It offers the most advanced general-purpose block storage solution with the best price-performance.

General availability: OpenTelemetry exporter for Azure Data Explorer

Azure Data Explorer now supports ingestion of data from many receivers via the OpenTelemetry exporter.

General availability: Stream Analytics no-code editor in Event Hubs

Stream Analytics no-code editor enables you to develop a Stream Analytics job in minutes with drag and drop experience. Now, it is generally available with several new capabilities added.

Generally available: Auto Extension upgrade for Arc enabled Servers

Azure Arc can now provide high availability and automatic protection against zero-day or critical vulnerabilities in Azure extensions to your Arc enabled Servers

General availability: Azure savings plan for compute

This week, Microsoft are officially announcing the general availability for Azure savings plan for compute.

General availability: Zone-redundant storage support by Azure Backup

Azure Backup enables you to configure cost-efficient backups while meeting your data residency requirements.

Public preview: Exactly once delivery for Azure Data Lake Storage Gen2

Stream Analytics now supports end-to-end exactly once semantics when writing to Azure Data Lake Storage Gen2.

Generally available: Azure Stream Analytics in one new region Qatar Central

Azure Stream Analytics is a fully managed, real-time analytics service designed to help you analyze and process fast moving streams of data.



Have you tried Hava automated diagrams for AWS, Azure, GCP and Kubernetes.  Get back your precious time and sanity and rid yourself of manual drag and drop diagram builders forever.
Hava automatically generates accurate fully interactive cloud infrastructure and security diagrams when connected to your AWS, Azure, GCP accounts or stand alone K8s clusters. Once diagrams are created, they are kept up to date, hands free. 

When changes are detected, new diagrams are auto-generated and the superseded documentation is moved to a version history. Older diagrams are also interactive, so can be opened and individual resources inspected interactively, just like the live diagrams.
Check out the 14 day free trial here (includes forever free tier):