Security Agent extends preview support to GitHub Enterprise Cloud, so your code, IaC, and supply chain now sit on the same scanning surface. Network Firewall picks up GenAI traffic classification. S3 lets you change a bucket's encryption type without re-uploading objects.
$ tail -f /var/log/aws-security.logAWS Security Agent now supports GitHub Enterprise Cloud, enabling AI-powered automated code reviews on pull requests, penetration testing of private repos, and automated remediation via pull requests. Available in US East (N. Virginia).
AWS Network Firewall now provides visibility into generative AI application traffic with web category-based filtering. Block unapproved GenAI services, restrict AI tool usage by category, and meet regulatory requirements for AI governance. Available in all commercial regions.
Amazon S3 now supports changing server-side encryption type of existing objects atomically without re-uploading. Migrate from SSE-S3 to SSE-KMS, rotate keys, and standardize encryption across buckets at scale via S3 Batch Operations.
AWS STS now validates select identity provider claims from Google, GitHub (14 of 33 claims), CircleCI, and OCI in OIDC federation. New condition keys are usable in trust policies and resource control policies for fine-grained federated access control.
$ cat WEEKLY_SUMMARY.mdThe Network Firewall GenAI filtering is a game-changer for organizations worried about shadow AI. You can now block unapproved GenAI services at the network level. The S3 encryption migration API also solves a long-standing pain point - no more re-uploading terabytes of data to change encryption keys.
These weekly digests are a starting point. Contact us for tailored threat briefings, security assessments, and architectural guidance for your AWS environment.