Hello everyone!! Last weekend, I maintained some of my Serverless Application. This included a GenAI application by Amazon Bedrock and a Slack App. I will also start studying for the "AWS Solutions Architect - Professional" certificate renewal. The deadline is the end of August in this year, I absolutely cannot lose this battle!
This post introduces my favorite recent AWS topic. Especially, Amazon ECS, Amazon EKS and AWS Serverless MCP server are very attention for me! Using MCP Servert to get context of specific knowledge is useful! Have fun vibe coding with MCP server!
Collection period: 2025/05/26 Mon ~ 2025/06/01 Sun
AWS Blog
Enhance AI-assisted development with Amazon ECS, Amazon EKS and AWS Serverless MCP server | AWS News Blog
Enhance AI-assisted development with Amazon ECS, Amazon EKS and AWS Serverless MCP server
AWS has introduced specialized Model Context Protocol (MCP) servers for Amazon ECS, EKS, and AWS Serverless, now available as open source solutions in the AWS Labs GitHub repository. These tools enhance AI development assistants by providing real-time, contextual responses beyond pre-trained knowledge.
Key Features:
- Amazon ECS MCP Server: Containerizes and deploys applications within minutes, configuring load balancers, networking, auto-scaling, and monitoring using natural language instructions
- Amazon EKS MCP Server: Provides AI assistants with up-to-date contextual information about specific EKS environments and latest features
- AWS Serverless MCP Server: Enhances serverless development with comprehensive knowledge of patterns, best practices, and AWS SAM CLI integration
Demonstration:
The article shows practical examples using Amazon Q CLI:
- Created a serverless backend application for video/image metadata extraction using Amazon Nova models
- Migrated the application to containerized architecture on ECS
- Built a web application marketplace on EKS cluster
The MCP servers automatically handle troubleshooting, code review, deployment, and error resolution through natural language commands. They work with popular AI-enabled IDEs and support the complete application lifecycle from development to production.
Additional Tools:
The repository also includes AWS Lambda MCP server and Amazon Bedrock Knowledge Bases Retrieval MCP server for enhanced functionality.
These tools accelerate development by providing AI assistants with deep AWS service understanding and current best practices.
Amazon Aurora DSQL, the fastest serverless distributed SQL database is now generally available | AWS News Blog
Amazon Aurora DSQL, the fastest serverless distributed SQL database is now generally available
Amazon Aurora DSQL, the fastest serverless distributed SQL database, is now generally available. It offers virtually unlimited scale, highest availability, and zero infrastructure management for always-available applications.
Key Features:
- Disaggregated architecture with independent components (query processor, adjudicator, journal, crossbar)
- 99.99% availability in single Region, 99.999% across multiple Regions
- Active-active distributed architecture with strong consistency
- Multi-Region support with synchronized endpoints
Architecture:
Single-Region clusters replicate data across three Availability Zones. Multi-Region clusters use two Regional endpoints with a third witness Region, enabling concurrent read/write operations with strong data consistency.
Getting Started:
Simple console experience allows creating single or multi-Region clusters. Users can connect via familiar SQL clients (PostgreSQL terminal, DBeaver, DataGrip) or programmatically using various languages (Python, Java, JavaScript, etc.).
New Capabilities Since Preview:
- Improved console experience with AWS CloudShell integration
- Enhanced PostgreSQL features (views, unique secondary indexes, Auto-Analyze)
- AWS service integrations (Backup, PrivateLink, CloudFormation, CloudTrail)
- Model Context Protocol server for AI interaction
Availability & Pricing:
Available in US East/West, Asia Pacific (Osaka/Tokyo), and Europe (Ireland/London/Paris) regions. Billing uses Distributed Processing Units (DPUs) for requests and GB-months for storage. AWS Free Tier includes 100,000 DPUs and 1 GB-month storage monthly.
Overview of Niconico's large-scale security reform realized with AWS by Dwango Co., Ltd. | Amazon Web Services Blog
Overview of Niconico's large-scale security reform realized with AWS by Dwango Co., Ltd.
This article describes Dwango's cloud security reform following a cyberattack on their Niconico platform in June 2024.
Background:
Dwango, operator of Japan's major video/livestreaming platform Niconico, was migrating from on-premises infrastructure to AWS when the cyberattack occurred. Fortunately, their existing security measures prevented AWS environment compromise.
Pre-existing Security Measures:
- Internal security guidelines
- AWS Trusted Advisor and Security Hub for preventive measures
- Amazon GuardDuty for incident management
- AWS CloudTrail for user activity monitoring
Security Reform Architecture:
The company implemented a comprehensive security platform based on two pillars:
- Prevention: Enhanced AWS Security Hub, Trusted Advisor, and Service Control Policy implementation across all AWS accounts to establish unified security baselines while maintaining team agility.
- Detection: GuardDuty-based threat detection with CloudTrail monitoring for suspicious activities, enabling immediate incident response through automated notifications.
Key Solutions:
- Multi-account architecture using AWS Control Tower and Organizations
- External security vendor collaboration for 24/7 monitoring
- Implementation of AWS Security Incident Response service for automated triage and investigation
Results:
The reform successfully prevented attack-like behaviors and received positive external security assessments. The flexible configuration options of AWS security services allowed cost-effective security improvements tailored to their specific needs.
Conclusion:
While AWS wasn't compromised during the attack, the company emphasizes that cloud security requires proactive customer responsibility under AWS's shared responsibility model. They continue advancing security measures across the KADOKAWA Group with AWS Japan's support.
Top comments (0)