Issue 64 of AWS Cloud Security Weekly

Amazon Inspector introduced an upgraded engine for its Lambda standard scanning, providing a more thorough view of vulnerabilities in third-party dependencies used in Lambda functions and associated layers. AWS Serverless Application Repository now supports AWS PrivateLink, allowing for a direct connection from VPC to the repository via AWS PrivateLink, eliminating the need for an internet connection. AWS introduced CloudTrail network activity for VPC endpoints in preview, providing enhanced visibility into AWS API activity passing through VPC endpoints. Security Group Referencing across VPCs connected via AWS Transit Gateway is now generally available, simplifying Security Group management and enhancing the security posture of TGW-based networks. Amazon Aurora MySQL-Compatible Edition offers a redesigned RDS Data API for both Aurora Serverless v2 and provisioned database instances, allowing secure access to Aurora clusters via an HTTP endpoint. Amazon RDS for PostgreSQL 17.0 is now available in the Amazon RDS Database Preview Environment, enabling users to test the pre-release version of PostgreSQL 17 on Amazon RDS. AWS announced the general availability of AWS Organizations integration with AWS Chatbot, enabling central management of account access through Slack and Microsoft Teams using AWS Organizations. You can now manage your Amazon S3 general-purpose bucket quotas through Service Quotas, viewing the total number of buckets, comparing it to your current bucket quota, and requesting an increase if needed. AWS re:Post introduced "re:Post Agent", a generative AI-powered assistant designed to improve interactions by delivering intelligent, near real-time responses on the platform. Amazon Simple Email Service (SES) now supports HTTPS for tracking open and click events when using custom domains, helping meet security compliance standards and reducing the likelihood of email delivery problems.