Podcast
Last Week In AWS Podcast
Hosted by Corey Quinn · EN
The latest in AWS news, sprinkled with snark. Posts about AWS come out over sixty times a day. We filter through it all to find the hidden gems, the community contributions--the stuff worth hearing about! Then we summarize it with snark and share it with you--minus the nonsense.
32episodes
Episodes
Newest firstAll episodes
The Week AWS Remembered GovCloud Exists
4d ago00:06:28Tap to summarizeAWS Morning Brief for the week of June 1st, with Corey Quinn. Links:Monitor AWS Budgets directly in Billing and Cost Management Dashboards with new Budgets widgetIntroducing the next generation of Amazon OpenSearch Serverless for building your agentic AI applicationsOptimize costs in Amazon AuroraHow AWS DevOps Agent uses multi-agent reasoning to find root causesClaude Opus 4.8 is now available on AWSBest Practices for TCP Connection Management on EC2Introducing US-based, US citizen, 24/7 technical support for AWS GovCloud (US) customers: Your mission never sleeps, neither do weWell-architected best practices for software supply chain securityAutomate Amazon EBS gp2 to gp3 migration at scale with AWS Step Functions and AWS LambdaAWS Organizations emits CloudTrail events for account membership changesCVE-2026-9255 - Tool Execution Without Authorization via Piped Stdin in Kiro CLICVE-2026-9291 - Insecure Deserialization in Amazon Braket SDK Job Results Processing
Transcribe →AWS and Oracle Together at Last, Apparently
1w ago00:05:41Tap to summarizeAWS Morning Brief for the week of May 25th, with Corey Quinn. Links:Amazon Bedrock expands support for request-level usage attributionAmazon ECS introduces pause and continue controls for service deploymentsAWS announces AWS Interconnect - multicloud connectivity with Oracle Cloud Infrastructure in previewAWS Organizations now supports higher quotas for service control policies (SCPs)Amazon Aurora MySQL 8.4 is now generally availableIntroducing ExtendDB: An open source DynamoDB-compatible adapter with pluggable storage backendsNine Entertainment’s journey: Achieving 98% cost savings with Amazon ElastiCache Serverless for ValkeyAnnouncing updated retry behavior for AWS SDKs and ToolsAnnouncing AWS CDK Mixins: Composable Abstractions for AWS ResourcesCVE-2026-8838 - Remote Code Execution in amazon-redshift-python-driverCVE-2026-9133 - Arbitrary file read in rabbitmq-aws plugin
Transcribe →M3 Ultra Macs, Claude Platform, and 619 New APIs Walk Into a Bar
3w ago00:07:06Tap to summarizeAWS Morning Brief for the week of May 18th , with Corey Quinn. Links:Announcing general availability of Amazon EC2 M3 Ultra Mac instancesAmazon EventBridge Scheduler adds 619 new SDK API actions, including Lambda Managed InstancesAmazon Redshift launches RG instances powered by AWS GravitonAmazon Route 53 Domains adds support for 34 new Top Level Domains including .app, .dev, and .health.ENA Express for Amazon EC2 instances now supports traffic between Availability ZonesStreaming CloudWatch metrics to VPC-based OpenTelemetry collectors using LambdaHow HotelTrader cut inter-AZ cost 95% and latency by 49% with Valkey GLIDE on Amazon ElastiCacheIntroducing Claude Platform on AWS: Anthropic’s native platform, through your AWS accountAmazon CloudFront Premium flat-rate pricing plan now supports higher, configurable usage allowancesScalable cross-cloud data migration to Amazon S3 with distributed rcloneDirty Frag and other issues in Amazon Linux kernelsCVE-2026-8178 - Remote Code Execution via Unsafe Class Loading in Amazon Redshift JDBC DriverFragnesia Local Privilege Escalation report via ESP-in-TCP in the Linux KernelOngoing updates on Copy.fail and variantsIssue with Amazon SageMaker Python SDK - Model artifact integrity verification issues (CVE-2026-8596 &amp: CVE-2026-8597)
Transcribe →AI-Native Foundations and the CVEs That Love Them
3w ago00:06:45Tap to summarizeAWS Morning Brief for the week of May 11th , with Corey Quinn. Links:Announcing Agent Toolkit for AWS — help AI coding agents build effectively on AWSAmazon CloudFront Announces WebSocket Support for VPC OriginsAmazon EventBridge supports data plane logging to AWS CloudTrailAWS IAM now provides higher maximum quotas for roles, role trust policies, instance profiles, managed policies, and identity providersAWS Marketplace now supports programmatic procurement with Agreements APIThe AWS MCP Server is now generally availableAnnouncing Valkey 9.0 for Amazon ElastiCacheQuery billion-scale vectors with SQL: Integrating Amazon S3 Vectors and Aurora PostgreSQLYou Wanted to Become AI-Native, and All You Got Was a Lousy FoundationCVE-2026-7461 - OS Command Injection in Amazon ECS Agent via FSx Windows File Server Volume CredentialsCVE-2026-7791 - Local Privilege Escalation via TOCTOU Race Condition in Amazon WorkSpaces Skylight AgentCVE-2026-31431
Transcribe →Bedrock Bags OpenAI, Q Developer Bags Groceries
May 400:08:32Tap to summarizeAWS Morning Brief for the week of May 4th, with Corey Quinn. Links:AWS Management Console now supports settings to control service and Region visibility - AWSAmazon CloudWatch adds visual agent configuration to the EC2 consoleAWS Announces Amazon Connect DecisionsAmazon Connect Talent for AI-powered hiring (now available in Preview)Introducing Amazon EC2 R8in and R8ib instancesAmazon OpenSearch Service now supports index-level encryptionAmazon Redshift Serverless AI-driven scaling is now the default for new workgroupsAWS Cost Optimization Hub now supports CSV downloadAWS KMS now tracks last usage of all KMS keysAWS Lambda adds support for Ruby 4.0AWS Marketplace Management Portal now supports bank account deletionAmazon Bedrock now offers OpenAI models, Codex, and Managed Agents (Limited Preview)Amazon CloudFront now supports invalidation by cache tagIntroducing Amazon EC2 C8ine and M8ine instancesIdentifying security risks using AWS Cost and Usage Report dataAmazon Q Developer end-of-support announcementIssue with AWS Ops Wheel (CVE-2026-6911 and CVE-2026-6912Issues in tough library and tuftool CLI utilityCVE-2026-7191- Arbitrary Code Execution via Sandbox Bypass in QnABot on AWSIssue with FreeRTOS-Plus-TCP - MAC Address Validation Bypass and ICMP Echo Reply Integer UnderflowCVE-2026-7424 - Integer Underflow in DHCPv6 Sub-Option Parser in FreeRTOS-Plus-TCPIssue with FreeRTOS-Plus-TCP - IPv6 Router Advertisement Memory Safety Issues
Transcribe →The Week AWS Discovered JOIN Statements
Apr 2700:09:36Tap to summarizeAWS Morning Brief for the week of April 27th, with Corey Quinn. Links:Amazon CloudWatch pipelines now supports configuration of processors via AIIntroducing the Amazon EKS Hybrid Nodes gateway for hybrid Kubernetes networkingAmazon EKS enhances cluster governance with new IAM condition keysAttributed Revenue Dashboard Now Available in AWS Partner CentralAWS Lambda functions can now mount Amazon S3 buckets as file systems with S3 FilesAmazon CloudWatch Logs Insights introduces JOIN and sub-query commandsAWS Lambda Durable Execution SDK for Java GAAmazon S3 Express One Zone now supports S3 InventoryAmazon S3 now supports five additional checksum algorithmsAWS Secrets Manager extends managed external secrets to MongoDB Atlas and Confluent CloudTrack Amazon Bedrock Costs by Caller Identity with IAM Principal-Based Cost AllocationTransforming FinOps with the Latest Amazon Q Cost CapabilitiesAurora Serverless: Faster performance, enhanced scaling, and still scales down to zeroFrom developer desks to the whole organization: Running Claude Cowork in Amazon BedrockGet to your first working agent in minutes: Announcing new features in Amazon Bedrock AgentCoreAutomated network incident response with AWS DevOps AgentAccelerate development workflows with Amazon EBS Volume ClonesTroubleshooting Amazon S3 access denied errors using Kiro CLICVE-2026-6437 - Mount Option Injection in Amazon EFS CSI DriverCVE-2026-6550 - Key commitment policy bypass via shared key cache in AWS Encryption SDK for Python
Transcribe →Multicloud Interconnect and the Great CVE Hunt
Apr 2000:05:32Tap to summarizeAWS Morning Brief for the week of April 20th, with Corey Quinn. Links:Amazon CloudWatch now supports cross-region telemetry auditing and enablement rulesIntroducing Amazon EC2 C8in and C8ib instancesAmazon Quick now supports multi-account sign-in within the same browserAmazon WorkSpaces Personal and Amazon WorkSpaces Core are now available in two additional AWS RegionsAWS announces general availability of AWS Interconnect - multicloudAutomate AWS Cost Reporting with Scheduled Dashboard Email DeliveryIntroducing Anthropic’s Claude Opus 4.7 model in Amazon BedrockIntroducing Amazon Bio DiscoveryCVE-2026-5429 - Kiro IDE Webview Cross-Site Scripting via Workspace Color ThemeIssues with Amazon Athena ODBC DriverIssues with AWS Research and Engineering Studio (RES)CVE-2026-5747 - Out-of-bounds Write in Firecracker virtio-pci Transport
Transcribe →S3 Files and an AI-Powered Singing Rat Trap
Apr 1300:06:12Tap to summarizeAWS Morning Brief for the week of April, 13th with Corey Quinn. Links:AWS Certificate Manager now supports native certificate searchAmazon S3 Lifecycle pauses actions on objects that are unable to replicateAmazon Bedrock now offers Claude Mythos Preview (Gated Research Preview)Amazon OpenSearch Serverless now supports Zstandard (zstd) codec for index compressionAWS Secrets Manager console now supports custom input for AWS KMS keysAmazon Bedrock now supports cost allocation by IAM user and roleAmazon S3 starts rolling out new security best practice to new and existing buckets by defaultIntroducing AI-Powered Cost Analysis in AWS Cost ExplorerLaunching S3 Files, making S3 buckets accessible as file systemsThe future of managing agents at scale: AWS Agent Registry now in previewUnderstanding Amazon Bedrock model lifecycleIntroducing OpenTelemetry & PromQL support in Amazon CloudWatch
Transcribe →S3 Gets Vectors, CloudFront Gets SHA-256, You Get the Bill
Apr 600:05:16Tap to summarizeAWS Morning Brief for the week of April 6th, with Corey Quinn. Links: Announcing Amazon RDS for Oracle on AWS OutpostsAWS Direct Connect now supports AWS CloudFormationAWS Service Availability UpdatesAmazon S3 Vectors expands to 17 additional AWS RegionsAmazon CloudFront now supports SHA-256 for signed URLs and signed cookiesAmazon CloudWatch now supports OpenTelemetry metrics in public previewAnnouncing compute-optimized instance bundles for Amazon LightsailAnnouncing managed daemon support for Amazon ECS Managed InstancesLeverage Agentic AI for Autonomous Incident Response with AWS DevOps AgentNavigating the NGINX Ingress retirement: A practical guide to migration on AWSOptimizing data transfer costs when using AWS Network Load BalancerAWS Security Agent on-demand penetration testing now generally available
Transcribe →Aurora PostgreSQL: Now Free Enough to Be Dangerous
Mar 3000:04:24Tap to summarizeAWS Morning Brief for the week of March 30th, with Corey Quinn. Links:Amazon Aurora PostgreSQL now available with the AWS Free TierAmazon EKS announces 99.99% Service Level Agreement and new 8XL scaling tier for Provisioned Control Plane clustersAWS Lambda increases the file descriptor limit to 4,096 for functions running on Lambda Managed InstancesThe AWS Advanced JDBC Wrapper now supports automatic query caching with ValkeyAnnouncing Amazon Aurora PostgreSQL serverless database creation in secondsEnhancing auto scaling resilience by tracking worker utilization metricsAmazon CloudFront flat-rate pricing plans: new features and expanded capabilitiesIAM policy types: How and when to use themPreparing for agentic AI: A financial services approach
Transcribe →