AWS Compute Blog

Category: Amazon Elastic Container Service

Anatomy of CVE-2019-5736: A runc container escape!

This post is courtesy of Samuel Karp, Senior Software Development Engineer — Amazon Container Services. On Monday, February 11, CVE-2019-5736 was disclosed.  This vulnerability is a flaw in runc, which can be exploited to escape Linux containers launched with Docker, containerd, CRI-O, or any other user of runc.  But how does it work?  Dive in! […]

A Guide to Locally Testing Containers with Amazon ECS Local Endpoints and Docker Compose

This post is contributed by Wesley Pettit, Software Engineer at AWS. As more companies adopt containers, developers need easy, powerful ways to test their containerized applications locally, before they deploy to AWS. Today, the containers team is releasing the first tool dedicated to this: Amazon ECS Local Container Endpoints. This is part of an ongoing open […]

Automatically update instances in an Amazon ECS cluster using the AMI ID parameter

UPDATE – Mar 15, 2021 – We’ve updated this post to reflect the guidance that customers should be updating their Amazon ECS clusters with Amazon Linux 2 AMIs. Customers should fully confirm application functionality before moving to Amazon Linux 2. This post is contributed by Adam McLean – Solutions Developer at AWS and Chirill Cucereavii […]

Scheduling GPUs for deep learning tasks on Amazon ECS

This post is contributed by Brent Langston – Sr. Developer Advocate, Amazon Container Services Last week, AWS announced enhanced Amazon Elastic Container Service (Amazon ECS) support for GPU-enabled EC2 instances. This means that now GPUs are first class resources that can be requested in your task definition, and scheduled on your cluster by ECS. Previously, […]

Setting up AWS PrivateLink for Amazon ECS, and Amazon ECR

Amazon ECS and Amazon ECR now have support for AWS PrivateLink. AWS PrivateLink is a networking technology designed to enable access to AWS services in a highly available and scalable manner. It keeps all the network traffic within the AWS network. When you create AWS PrivateLink endpoints for ECR and ECS, these service endpoints appear […]

Migrate Wildfly Cluster to Amazon ECS using Service Discovery

This post is courtesy of Vidya Narasimhan, AWS Solutions Architect 1. Overview Java Enterprise Edition has been an important server-side platform for over a decade for developing mission-critical & large-scale applications amongst enterprises. High-availability & fault tolerance for such applications is typically achieved through built-in JEE clustering provided by the platform. JEE clustering represents a […]

AWS Fargate Price Reduction – Up to 50%

AWS Fargate is a compute engine that uses containers as its fundamental compute primitive. AWS Fargate runs your application containers for you on demand. You no longer need to provision a pool of instances or manage a Docker daemon or orchestration agent. Because the infrastructure that runs your containers is invisible, you don’t have to […]

Amazon ECS Task Placement

Topics Intro Attributes, task groups, and expressions Task placement constraints Task placement strategies Use cases Intro Amazon Elastic Container Service (ECS) is a highly scalable, high-performance container orchestration service that allows you to easily run and scale containerized applications on AWS. This post covers how Amazon Elastic Container Service (Amazon ECS) runs containers in a […]

Getting started with the AWS Cloud Development Kit for Amazon ECS

The AWS Cloud Development Kit (AWS CDK) is an open-source software development framework to define cloud infrastructure in code and provision it through AWS CloudFormation. The AWS CDK integrates fully with AWS services and offers a higher-level object-oriented abstraction to define AWS resources imperatively. Using the AWS CDK library of infrastructure constructs, you can easily […]

Migrating your Amazon ECS deployment to the new ARN and resource ID format

Update – August 21, 2020 – Added a section with the latest timeline. Starting today you can opt in to a new Amazon Resource Name (ARN) and resource ID format for Amazon ECS tasks, container instances, and services. The new format enables the enhanced ability to tag resources in your cluster, as well as tracking […]