CyraBee AWS Weekly Newsletter is part of FAUN Developer Community. We help developers learn and grow by keeping them up with what matters.

⭐ Sponsors

The all-in-one monitoring solution for IT admins, DevOps and SREs

Get deep visibility into the performance of your complex enterprise applications and cloud native workloads. Identify potential issues, improve productivity, and ensure that your business and end users are unaffected by downtime and substandard performance.

Download a 30-day free trial .

👉 Spread the word and help developers find you by promoting your projects on FAUN. Get in touch for more information.

🔗 From the web

AWS Lambda Functions

If you have experience writing and deploying AWS Lambda functions in a non-strongly-typed language or if you have no experience with it at all, this article is for you.

✅ SCPs: Protecting Your AWS Environment (and your job)

IAMbic, the open-source tool for managing distributed IAM permissions, has expanded its support to include AWS compliance guardrails through Service Control Policies (SCPs). SCPs provide policy governance in AWS, acting as a protective barrier for AWS resources. Users can now efficiently track changes, rollback between different IAM versions, and automatically correct out-of-band changes for important resources. Additionally, IAMbic supports a GitOps workflow, allowing you to implement IAM and SCP changes via PR reviews for improved governance. Continue reading for examples of SCPs, and practical guidance on applying them safely.

Continuous Data Quality Monitoring for AWS Athena

A guide to implementing Continuous Data Quality monitoring on a typical AWS Athena and AWS Glue data architecture

How to Setup Techlatest Stable Diffusion With AUTOMATIC1111 Web Interface On AWS

Learn how to install Stable Diffusion, a powerful text-to-image generative model, with AUTOMATIC1111 Web Interface on Amazon Web Services.

Improve operational efficiencies of Apache Iceberg tables built on Amazon S3 data lakes

How to improve operational efficiencies of your Apache Iceberg Tables Built on Amazon S3 data lake and Amazon EMR big data platform.

Tag-based Deployment Trigger for AWS CodePipeline

Effective software development on AWS requires a structured environment. AWS CodePipeline offers branch-based and tag-based deployment strategies. Implementing a tag-based strategy involves disabling default triggers, creating an EventBridge rule with a specific tag format, and configuring the CodePipeline target. This enables automated deployment based on tags across multiple environments.

✅ Attacking and securing cloud identities in managed Kubernetes: Amazon EKS

This post provides a deep dive into how Amazon EKS IAM works, and several attack vectors to pivot from an EKS cluster to an AWS environment.

⭐ Supporters

Cloud Native Microservices With Kubernetes

“Cloud Native Microservices With Kubernetes” is a hands-on, example-rich guide focused on real-world examples and practical learning that covers everything needed from the basics to the most advanced concepts.

OpenAI GPT For Python Developers

Explore the fascinating world of Artificial Intelligence and solve real-world problems!

In this practical guide, you will build intelligent real-world applications using GPT-3, DALL-E, Whisper, CLIP, and more tools from the OpenAI and ML ecosystem.

Rest assured, you don’t need to be a data scientist or machine learning engineer to follow this guide

👉 Spread the word and help developers find you by promoting your projects on FAUN. Get in touch for more information.

ℹ️ News

CrowdStrike & AWS to Accelerate AI Development in Cybersecurity

CrowdStrike and Amazon Web Services (AWS) are collaborating to develop a new generative AI app to help customers accelerate cloud security and AI adoption. The app includes cybersecurity-related generative AI applications and is designed to help customers build secure generative AI applications. CrowdStrike plans to leverage AWS’s new generative AI capability to make the foundation model available via the API to help customers adopt advanced Falcon platform search reporting automation.

AWS announces improved end-to-end latencies for Amazon EventBridge Event Buses

Amazon EventBridge Event Buses now deliver events with lower latencies enabling you to power an even broader set of latency-sensitive event-driven applications, especially in industrial and medical applications. Amazon Eventbridge delivers events up to 80% faster than before, as measured by the time an event is ingested to the first invocation attempt.

AWS Systems Manager Distributor now supports the CrowdStrike Falcon Sensor agent

Distributor, a capability of AWS Systems Manager that allows you to install and update the software on your instances with version control, now allows you to install the CrowdStrike Falcon Sensor agent directly from Distributor without having to create or maintain any software packages.

Legion malware expands scope to target AWS CloudWatch monitoring tool

Cado Security researchers believe Legion was developed in Indonesia with an eye toward selling it to other attackers for exploiting cloud services.

⚙️ Tools

cr-trojan23/ha-grafana

AWS Infrastructure to deploy a highly available Grafana service on ECS with Load Balancing

marwan116/aws-parquet

aws-parquet is a toolkit than enables working with parquet datasets on AWS. It handles AWS S3 reads/writes, AWS Glue catalog updates and AWS Athena queries by providing a simple and intuitive interface.

nandakobs/pods-aws-mfa

Are you tired of the constant struggle of accessing your pods? Fed up with expired AWS credentials or the hassle of switching contexts every single time? This script gotcha!

👉 Spread the word and help developers find and follow your Open Source project by promoting it on FAUN. Get in touch for more information.

🛍️ Swag Store

The Orchestrate T-shirt

❤️ 20% exclusive discount for FAUNers on all products (+free shipping included) when you use the code “THANKSFAUN”.

😂 Meme of the week

❤️ Thanks for reading

👉 Never miss an issue
Join FAUN Developer Community and subscribe to our newsletter here.

👋 Keep in touch and follow us on social media:
- 💼LinkedIn
- 📝Medium
- 🐦Twitter
- 👥Facebook
- 📸Instagram

👌 Was this newsletter helpful?
We’d really appreciate it if you could share it with your friends! You can also donate to help us keep this newsletter going.

ℹ️ Have a question or feedback?
Feel free to reach out to us at [email protected]. We’d love to hear from you!

🤩 Want to sponsor our newsletter?
Reach out to us at [email protected] and we’ll get back to you as soon as possible.

🐝 AWS Weekly #376: Attacking and Securing Cloud Identities in Managed Kubernetes: Amazon EKS was originally published in FAUN — Developer Community 🐾 on Medium, where people are continuing the conversation by highlighting and responding to this story.