TIL

Today I Learned — Daily learnings

Strands Agents Structured Output internally works as a tool

Pydantic models passed to structured_output_model appear as tools in metrics tool_usage. If you see an unfamiliar tool name during debugging, it's the Structured Output mechanism.

April 3, 20261 min read

#strands-agents #bedrock #python+1

TIL

ECS Managed Instances daemons require a dedicated IAM policy

If ECS Managed Daemons won't start, check that the instance profile uses AmazonECSInstanceRolePolicyForManagedInstances. The legacy AmazonEC2ContainerServiceforEC2Role won't work.

April 2, 20261 min read

#aws #ecs #managed-instances+1

TIL

Security Agent Application is a regional resource, not global

Security Agent Application is one per region, not one per account. An Application created in Tokyo is invisible from us-east-1. Each region requires its own create-application call.

April 2, 20261 min read

#aws #security-agent #iam

TIL

AWS Security Agent service role requires CloudWatch Logs permission (undocumented)

Security Agent pentest fails at PREFLIGHT with AccessDeniedException if the service role lacks logs:CreateLogGroup. Not mentioned in official docs.

April 2, 20261 min read

#aws #security-agent #iam

TIL

Security Agent pentest crashes single-threaded servers — gunicorn or equivalent required

AWS Security Agent runs 13 attack categories in parallel, overwhelming Flask's dev server with HTTP 503. Multi-worker server like gunicorn is required for pentest targets.

April 2, 20261 min read

#aws #security-agent #penetration-testing

TIL

Security Agent sourceCode hits INTERNAL_ERROR in Tokyo but works fine in us-east-1

sourceCode pentest failed with INTERNAL_ERROR twice in ap-northeast-1 but worked normally in us-east-1 with the same configuration. documents works fine in Tokyo.

April 2, 20261 min read

#aws #security-agent #penetration-testing

TIL

Security Agent sourceCode requires ZIP archive, documents accepts raw files

Specifying a raw file in create-pentest assets.sourceCode returns 'Source code S3 URL must point to a ZIP archive'. documents accepts raw files directly.

April 2, 20261 min read

#aws #security-agent #penetration-testing

TIL

Security Agent sourceCode and documents use fundamentally different processing pipelines

sourceCode triggers CODE SCANNER (BUSINESS LOGIC / IMPORTANT FLOWS / FRAMEWORKS) for systematic static analysis that finds vulnerabilities before PENTEST. documents only runs a DOCUMENTS task for context processing.

April 2, 20261 min read

#aws #security-agent #penetration-testing

TIL

Security Agent pentest works via VPC Config even when CLI domain verification returns UNREACHABLE

verify-target-domain uses public access so private DNS returns UNREACHABLE, but VPC Config pentests perform separate internal verification during PREFLIGHT that succeeds.

April 2, 20261 min read

#aws #security-agent #vpc

TIL

DevOps Agent IAM action prefix is aidevops, not devops-agent

AWS DevOps Agent IAM actions use the aidevops prefix, not devops-agent. The boto3 client name is devops-agent but IAM policies need aidevops:*. AWS CLI support was added in v2.34.20.

April 1, 20261 min read

#aws #devops-agent #iam