GigaTap articles tagged AWS.
- AWS CIRT update: know the help boundary before an incident - AWS updated its CIRT guidance with clearer engagement paths, TTC threat intelligence, and tooling. The useful work is checking support, logs, and DFIR gaps
- AWS Network Firewall gets a cleaner policy lever - AWS’s URL and domain category filtering can reduce brittle domain-list work, but teams still need clear scope, exception handling, and logging.
- Agent build tests need fixed baselines - AWS’s AgentCore dataset workflow shows why agent evaluation needs versioned test suites, ground truth, and regression checks built from production failures
- AWS’s Kiro CLI AMI workflow: useful, if reviewed - AWS shows how Kiro CLI can help draft and troubleshoot EC2 Image Builder AMI pipelines. The safe value is reviewable IaC, not prompt-driven production chan
- Supply chain attacks punish long-lived secrets - AWS’s latest guidance is a reminder that package attacks become worse when CI/CD and developer environments expose durable credentials.
- AWS KY3P report gives customers a cleaner risk evidence path - AWS has completed its S&P Global KY3P assessment. The report can help customers reduce duplicated supplier due diligence, but it does not replace their own
- AWS Managed AD gets API-driven identity controls - AWS now lets teams manage AWS Managed Microsoft AD users and groups through Directory Service Data APIs. The useful shift is not just automation, but faste
- Policy as code works best before cloud changes ship - AWS’s guidance on pattern-based policy as code shows how teams can catch routine cloud governance failures before deployment, without pretending pre-deploy
- AWS access portals get regional routing - AWS guidance shows how custom vanity domains can make IAM Identity Center access portals cleaner to route across Regions, with resilience and latency benef
- AWS code scanning preview targets whole-repo security gaps - AWS Security Agent now has a preview full-repository scanning feature. The key shift is context-aware review across code paths, not just pattern matching.
- AWS Maps ISO 42001 to Cloud Reality - AWS’s new ISO 42001 guide helps AI teams map governance controls to AWS services without confusing cloud support for compliance ownership.
- AWS WAF Makes AI Agent Traffic Measurable - AWS WAF’s AI Traffic Analysis dashboards turn mystery AI traffic into usable signals for policy, cost control, and endpoint strategy.