AWS Open Source Blog
Category: Security, Identity, & Compliance
A Container-Free Way to Configure Kubernetes Using AWS Lambda
Learn how to access the Kubernetes API from an AWS Lambda function entirely in code, without the need to build a container image with executables. This provides a simple approach to create your Lambda functions, and also a faster execution time.
Supply Chain Security on Amazon Elastic Kubernetes Service (Amazon EKS) using AWS Key Management Service (AWS KMS), Kyverno, and Cosign
Learn how to integrate open source Cosign with AWS KMS and ensure supply chain security is maintained using open source Kyverno.
Accelerate AWS IAM Identity Center (Successor to AWS Single Sign-On) Implementation using AWS Cloud Development Kit (AWS CDK)
In conversations with our customers, we often hear that they find it tedious to write AWS CloudFormation templates to create new permission sets, assign permission sets to users and groups in AWS IAM Identity Center (successor to AWS Single Sign-On) and grant access for users and groups to multiple AWS accounts in their organization. This […]
Authenticating with Amazon Managed Grafana Using Open Source Keycloak on Amazon EKS
Learn how to deploy and configure the open source Keycloak on Amazon EKS to serve as the SAML authentication provider for Amazon Managed Grafana.
Dashboards as code: A new approach to visualizing AWS APIs
You manage your infrastructure with code, why not manage your dashboards the same way? With Steampipe’s dashboards-as-code approach you write HCL to define dashboard widgets, and you write SQL to fill them with data extracted from APIs. Here are some common questions about your AWS resources: How many resources do I have? How old are […]
Running Dicoogle, an open source PACS solution, on AWS (part 2)
This blog post is the second part of a two-part series that describes how to host a secure Digital Imaging and Communications in Medicine (DICOM) server on AWS using Dicoogle open source software. In part one of this blog series, I introduced DICOM, explained the functionalities the solution provides, highlighted the AWS services used, and […]
Running Dicoogle, an open source PACS solution, on AWS (part 1)
This blog is the first part of a two-part series that describes how to host a secure DICOM server on AWS. It is based on the Dicoogle open source software, which provides the functionality of a PACS (picture archiving and communication system). A PACS stores and indexes DICOM medical image files, and uses the DICOM […]
AWS Investing an Additional $10 Million in Open Source Supply Chain Security
Security is our top priority at AWS. As a result, we are committed to contributing to the quality and safety of open source software. We see great value in contributing both engineering efforts and also projects, tools, training, and guidelines to help improve the security of open source software. These efforts benefit us, our customers, […]
Compliance auditing with Steampipe and SQL
This post was contributed by David Boeke, Bob Tordella, Jon Udell, and Nathan Wallace. Steampipe is an open source tool under the AGPLv3 license for querying cloud APIs in a universal way and reasoning about the data in SQL. In our first post we explored the AWS plugin which maps the suite of AWS APIs […]
Building a multi-tenant Kubeflow environment on Amazon EKS using Amazon Cognito and ADFS
NOTE: Since this blog post was written, much about Kubeflow has changed. While we are leaving it up for historical reference, more accurate information about Kubeflow on AWS can be found here. The Kubeflow project is dedicated to making deployments of machine learning (ML) workflows on Kubernetes simple, portable, and scalable. The project’s goal is […]