Containers
Category: DevOps
Applying Generative AI to CVE remediation – early vulnerability patching in Continuous Integration Pipelines
Cloud technologies are a rapidly evolving landscape. Securing cloud applications is everyone’s responsibility, meaning application development teams are needed to follow strict security guidelines from the earliest development stages, and to make sure of continuous security scans throughout the whole application lifecycle. The rise of generative AI enables new innovative approaches for addressing longstanding challenges with […]
Signing and Validating OCI Artifacts with AWS Signer
This post is an extension of our Container Image Signing blog series. In our first post, we discussed the motivations and fundamental concepts behind cryptographic signing for containers. Introduction Organizations today are adding additional security measures to their software development lifecycles (SDLC) due to compliance, governance, or executive requirements. For containerized applications, one such security […]
How RGC Genetics Center achieved infrastructure automation at scale using AWS Proton
This post was co-written with Rouel Lanche, Associate Director IT Architect, Regeneron Introduction Regeneron is a leading biotechnology company that invents, develops, and commercializes life-transforming medicines for people with serious diseases. Founded and led for 35 years by physician-scientists, Regeneron’s unique ability to repeatedly and consistently translate science into medicine has led to numerous FDA-approved […]
Using Windows Authentication with gMSA on Linux Containers on Amazon ECS
UPDATE: On July 17th 2023, AWS launched support for Windows authentication with gMSA on non-domain-joined (domainless) Amazon ECS Linux container instances. This blog post has been updated to cover both modes, making domainless mode the default. Introduction Today, we are announcing the availability of Credentials Fetcher integration with Amazon Elastic Container Service (Amazon ECS). This […]
Announcing Git-based service deployments with service sync for AWS Proton
Introduction Today, AWS Proton announced service sync, a new feature that allows application developers to configure and deploy their Proton services using Git. With this feature, developers can sync their AWS Proton service with a configuration defined in a Git repository, allowing them to use Git features, like version control and pull requests, to configure, […]
Automating Amazon EKS cluster testing with custom machine images
AWS recently launched a new service, EC2 Image Builder, which automates and simplifies the creation, maintenance, and validation of Amazon Machine Images (AMIs). Many of our customers are using this service to generate their own customized, hardened images. In this post, we will demonstrate how you can automatically test your Amazon Elastic Kubernetes Service (Amazon […]
Introducing cdk8s+: Intent-driven APIs for Kubernetes objects
At AWS, we’ve been exploring new approaches of making it easier to define Kubernetes applications. Last month, we announced the alpha release of cdk8s, an open-source project that enables you to use general purpose programming languages to synthesize manifests. Today, I would like to tell you about cdk8s+ (cdk8s-plus), which we believe is the natural […]
Introducing CDK for Kubernetes
At AWS, we’ve seen customers rapidly adopt Kubernetes to deploy applications globally, train machine learning models at scale, and standardize how they deliver innovation across data centers and the cloud. Using Kubernetes, customers are building automated tooling to replace manual processes, implementing operational pipelines for every piece of their infrastructure, and empowering development teams with […]
Create a CI/CD pipeline for Amazon ECS with GitHub Actions and AWS CodeBuild Tests
Amazon Elastic Container Service (Amazon ECS) is a fully managed container orchestration service that makes it easy to operate containerized workloads at scale. It also integrates with other core AWS services, such as Amazon Route 53, AWS Identity and Access Management (IAM), and Amazon CloudWatch. Establishing an effective and efficient CI/CD pipeline is critical for containerized […]