Weekly Cloud Info #W17 - 2025

April 25, 2025

Hi!

Here’s everything you need to stay ahead in the world of cloud this week — from major AWS and Azure updates to AI announcements and hidden certification deals. ☁️

Have a great read.

📰 Top picks of the week

AWS Enhances Security with Amazon Cognito's Refresh Token Rotation Feature

Amazon Cognito now supports OAuth 2.0 refresh token rotation for user pool clients, enhancing security by regularly updating long-lived refresh tokens. This feature allows seamless user access without the need for re-authentication, reducing the risk from compromised tokens. Available for Cognito customers in Essentials and Plus tiers across various AWS Regions, it enables a better balance between user experience and security. For detailed information, check the Cognito Refresh Token Developer Guide.

AWS Introduces IAM-Based Account Name Updates for Easier Management

AWS now allows customers to update account names using IAM-based API, eliminating the need for root access. This update enhances account management for those using AWS Organizations, facilitating centralized control across multiple accounts. The new feature can be accessed via the AWS CLI and SDK at no additional cost in all commercial regions, including China. Documentation is available for guidance on using this feature.

AWS EKS Launches Node Monitoring & Auto Repair to Boost Reliability

Amazon EKS now offers node monitoring and auto repair capabilities, enabling automatic detection and replacement of unhealthy nodes in Kubernetes clusters. This feature improves workload availability by minimizing downtime and reducing the operational burden on teams. It also supports various compute options, including EKS Managed Node Groups and GPU workloads. Overall, it enhances reliability and efficiency for Kubernetes applications.

AWS Launches General Availability of Prompt Optimization in Amazon Bedrock

Amazon Bedrock's Prompt Optimization is now generally available, allowing users to automatically refine prompts for foundation models like Anthropic and Llama. This tool enhances prompt performance and response quality while facilitating easy comparison with original prompts. Available in multiple AWS Regions, it supports lifecycle management and can be accessed through Bedrock Playground or API.

AWS Transfer Family Introduces Terraform Module for Easy SFTP Server Setup

AWS Transfer Family has launched a Terraform module for easily deploying SFTP server endpoints backed by Amazon S3. This allows users to automate the provisioning of MFT servers and manage user access efficiently. The module simplifies deployments by eliminating manual configurations and enhancing scalability. Users can find the source code on GitHub and access further resources through the product page.

Azure Copilot in Forms: New Features to Simplify Form Creation and Boost Responses

Azure's Copilot in Forms introduces new agentic features to streamline form creation and management. It now provides tailored suggestions for form editing, theme selection, and settings to enhance user engagement. Additionally, Copilot can automate response tracking, send reminders, and manage distribution channels. These tools help users collect data efficiently and analyze insights in Excel.

Enabling Metadata Cache in Azure Files SSD improves GIS workload reduces execution time by 43.18%.

Azure Files has launched new enhancements to improve performance, cost efficiency, and management of file data. The new provisioned v2 billing model for HDD storage offers predictable pricing based on reserved resources. Businesses can optimize their cloud spending while boosting performance limits for their workloads. These updates aim to simplify file management for organizations of all sizes.

GCP Patch: New Security Fix for Cloud Run's ImageRunner Vulnerability

A privilege escalation vulnerability in Google Cloud Platform (GCP) Cloud Run, named ImageRunner, has been reported and patched as of January 28, 2025. This flaw could allow attackers to access private container images and inject malicious code by exploiting certain permissions. Google has now ensured that accounts updating Cloud Run resources must have explicit access to the necessary container images. The issue highlights security risks in interconnected cloud services.

CNCF Launches kagent: An Open Source AI Framework for Cloud Native Operations

The article discusses the challenges faced by platform and DevOps engineers in cloud native operations and introduces kagent, an open-source AI programming framework designed for Kubernetes. Kagent enables the creation of AI agents to automate complex tasks like configuration and troubleshooting. Built on Microsoft's AutoGen framework, it aims to enhance productivity by providing extensible tools for engineers to develop and share their own AI-driven solutions. The framework supports various cloud native technologies, including Kubernetes, Envoy, and Prometheus.

GitHub Enhancements: New Actions Token & Expanded Secret Scanning Features

GitHub Actions now integrates the built-in GITHUB_TOKEN for easier authentication with GitHub Models, streamlining AI-enhanced workflows without the need for Personal Access Tokens. Additionally, secret scanning has expanded its default patterns and push protection to enhance supply chain security, providing comprehensive detection for various secrets. New patterns for secret scanning include various tokens from services like Bitrise, LinkedIn, and others. This ensures better protection against accidental exposure of sensitive information.

❤️ You might also like

  • AWS and University of Pittsburgh launch AI sports analytics center LINK

  • Baidu unveils Kunlun chip cluster for DeepSeek-scale AI training LINK

  • Dubai’s du and Microsoft announce $544M hyperscale data center deal LINK

  • Palantir and Google Cloud expand FedRAMP services to US agencies LINK

  • Kyndryl launches AI private cloud services for enterprises LINK

  • Alphabet Q1 revenue up 12%, driven by AI and cloud growth LINK

  • AI gateways emerge as key component of cloud-native infrastructure LINK

🎁 This week hidden gem

🚀 Up to 40% OFF on Kubernetes Certifications from The Linux Foundation
For a limited time, The Linux Foundation is offering up to 40% off on Kubernetes certifications and bundles, including CKA, CKAD, CKS, KCNA, and KCSA. Use the promo code APRIL25CT at checkout.
Explore the offer and bundles here

🏁 Enjoy this newsletter?

Forward it to a friend, and let them know they can subscribe here.