* fix: Add AWS_REGION fallback for gateway notebooks
Update AWS_DEFAULT_REGION environment variable setting in AgentCore
gateway notebooks to fall back to AWS_REGION when available,
defaulting to us-east-1 if neither is set.
This change ensures compatibility with different AWS environment
configurations and follows SageMaker best practices.
Files modified:
- 01-tutorials/02-AgentCore-gateway/01-transform-lambda-into-mcp-tools/01-gateway-target-lambda.ipynb
- 01-tutorials/02-AgentCore-gateway/02-transform-apis-into-mcp-tools/02-transform-openapi-into-mcp-tools/01-openapis-into-mcp-api-key.ipynb
- 01-tutorials/02-AgentCore-gateway/02-transform-apis-into-mcp-tools/02-transform-openapi-into-mcp-tools/02-openapis-into-mcp-oauth-enterpris-apis.ipynb
- 01-tutorials/02-AgentCore-gateway/02-transform-apis-into-mcp-tools/03-transform-smithyapis-into-mcp-tools/01-s3-smithy-into-mcp-iam.ipynb
Changed: os.environ['AWS_DEFAULT_REGION'] = 'us-east-1'
To: os.environ['AWS_DEFAULT_REGION'] = os.environ.get('AWS_REGION', 'us-east-1')
* adding requirement files for sm run
* adding requirement files for sm run
* renaming gateway folders
* Remove cell execution output
* renaming gateway folders
* changing pip install for gateway search sample
* remove cell outputs
---------
Co-authored-by: Maira Ladeira Tanke <mttanke@amazon.com>
* Add missing credential_provider_name parameter to config.yaml.example
* Fix get_config function to properly parse YAML values with inline comments
* Enhanced get_config to prevent copy-paste whitespace errors in AWS identifiers
* Improve LLM provider configuration and error handling with bedrock as default
* Add OpenAPI templating system and fix hardcoded regions
* Add backend template build to Readme
* delete old yaml files
* Fix Cognito setup with automation script and missing domain creation steps
* docs: Add EC2 instance port configuration documentation
- Document required inbound ports (443, 8011-8014)
- Include SSL/TLS security requirements
- Add AWS security group best practices
- Provide port usage summary table
* docs: Add hyperlinks to prerequisites in README
- Link EC2 port configuration documentation
- Link IAM role authentication setup
- Improve navigation to detailed setup instructions
* docs: Add BACKEND_API_KEY to configuration documentation
- Document gateway environment variables section
- Add BACKEND_API_KEY requirement for credential provider
- Include example .env file format for gateway directory
- Explain usage in create_gateway.sh script
* docs: Add BACKEND_API_KEY to deployment guide environment variables
- Include BACKEND_API_KEY in environment variables reference table
- Mark as required for gateway setup
- Provide quick reference alongside other required variables
* docs: Add BedrockAgentCoreFullAccess policy and trust policy documentation
- Document AWS managed policy BedrockAgentCoreFullAccess
- Add trust policy requirements for bedrock-agentcore.amazonaws.com
- Reorganize IAM permissions for better clarity
- Remove duplicate trust policy section
- Add IAM role requirement to deployment prerequisites
* docs: Document role_name field in gateway config example
- Explain that role_name is used to create and manage the gateway
- Specify BedrockAgentCoreFullAccess policy requirement
- Note trust policy requirement for bedrock-agentcore.amazonaws.com
- Improve clarity for gateway configuration setup
* docs: Add AWS IP address ranges for production security enhancement
- Document AWS IP ranges JSON download for restricting access
- Reference official AWS documentation for IP address ranges
- Provide security alternatives to 0.0.0.0/0 for production
- Include examples of restricted security group configurations
- Enable egress filtering and region-specific access control
* style: Format Python code with black
- Reformat 14 Python files for consistent code style
- Apply PEP 8 formatting standards
- Improve code readability and maintainability
* docs: Update SRE agent prerequisites and setup documentation
- Convert prerequisites section to markdown table format
- Add SSL certificate provider examples (no-ip.com, letsencrypt.org)
- Add Identity Provider (IDP) requirement with setup_cognito.sh reference
- Clarify that all prerequisites must be completed before setup
- Add reference to domain name and cert paths needed for BACKEND_DOMAIN
- Remove Managing OpenAPI Specifications section (covered in use-case setup)
- Add Deployment Guide link to Development to Production section
Addresses issues #171 and #174
* fix: Replace 'AWS Bedrock' with 'Amazon Bedrock' in SRE agent files
- Updated error messages in llm_utils.py
- Updated comments in both .env.example files
- Ensures consistent naming convention across SRE agent codebase
---------
Co-authored-by: dheerajoruganty <dheo@amazon.com>
Co-authored-by: Amit Arora <aroraai@amazon.com>
It should be
"ecr:BatchGetImage",
"ecr:GetDownloadUrlForLayer"
rather than:
"ecr: BatchGetImage",
"ecr: GetDownloadUrlForLayer"
There is an extrac space
Signed-off-by: Dustin Liu <liucong.haonan@gmail.com>
* feat: Deploy SRE agent on Amazon Bedrock AgentCore Runtime
- Add agent_runtime.py with FastAPI endpoints for AgentCore compatibility
- Create Dockerfile for ARM64-based containerization
- Add deployment scripts for automated ECR push and AgentCore deployment
- Update backend API URLs from placeholders to actual endpoints
- Update gateway configuration for production use
- Add dependencies for AgentCore runtime support
Implements #143
* chore: Add deployment artifacts to .gitignore
- Add deployment/.sre_agent_uri, deployment/.env, and deployment/.agent_arn to .gitignore
- Remove already tracked deployment artifacts from git
* feat: Make ANTHROPIC_API_KEY optional in deployment
- Update deploy_agent_runtime.py to conditionally include ANTHROPIC_API_KEY
- Show info message when using Amazon Bedrock as provider
- Update .env.example to clarify ANTHROPIC_API_KEY is optional
- Only include ANTHROPIC_API_KEY in environment variables if it exists
* fix: Use uv run python instead of python in build script
- Update build_and_deploy.sh to use 'uv run python' for deployment
- Change to parent directory to ensure uv environment is available
- Fixes 'python: command not found' error during deployment
* refactor: Improve deployment script structure and create .env symlink
- Flatten nested if-else blocks in deploy_agent_runtime.py for better readability
- Add 10-second sleep after deletion to ensure cleanup completes
- Create symlink from deployment/.env to sre_agent/.env to avoid duplication
- Move time import to top of file with other imports
* feat: Add debug mode support and comprehensive deployment guide
Add --debug command line flag and DEBUG environment variable support:
- Created shared logging configuration module
- Updated CLI and runtime to support --debug flag
- Made debug traces conditional on DEBUG environment variable
- Added debug mode for container and AgentCore deployments
Enhanced build and deployment script:
- Added command line argument for ECR repository name
- Added help documentation and usage examples
- Added support for local builds (x86_64) vs AgentCore builds (arm64)
- Added environment variable pass-through for DEBUG, LLM_PROVIDER, ANTHROPIC_API_KEY
Created comprehensive deployment guide:
- Step-by-step instructions from local testing to production
- Docker platform documentation (x86_64 vs arm64)
- Environment variable configuration with .env file usage
- Debug mode examples and troubleshooting guide
- Provider configuration for Bedrock and Anthropic
Updated README with AgentCore Runtime deployment section and documentation links.
* docs: Update SRE Agent README with deployment flow diagram and fix directory reference
- Fix reference from 04-SRE-agent to SRE-agent in README
- Add comprehensive flowchart showing development to production deployment flow
- Update overview to mention Amazon Bedrock AgentCore Runtime deployment
- Remove emojis from documentation for professional appearance
* docs: Replace mermaid diagram with ASCII step-by-step flow diagram
- Change from block-style mermaid diagram to ASCII flow diagram
- Show clear step-by-step progression from development to production
- Improve readability with structured boxes and arrows
- Minor text improvements for clarity
* feat: Implement comprehensive prompt management system and enhance deployment guide
- Create centralized prompt template system with external files in config/prompts/
- Add PromptLoader utility class with LRU caching and template variable substitution
- Integrate PromptConfig into SREConstants for centralized configuration management
- Update all agents (nodes, supervisor, output_formatter) to use prompt loader
- Replace 150+ lines of hardcoded prompts with modular, maintainable template system
- Enhance deployment guide with consistent naming (my_custom_sre_agent) throughout
- Add quick-start copy-paste command sequence for streamlined deployment
- Improve constants system with comprehensive model, AWS, timeout, and prompt configs
- Add architectural assessment document to .gitignore for local analysis
- Run black formatting across all updated Python files
* docs: Consolidate deployment and security documentation
- Rename deployment-and-security.md to security.md and remove redundant deployment content
- Enhance security.md with comprehensive production security guidelines including:
- Authentication and authorization best practices
- Encryption and data protection requirements
- Operational security monitoring and logging
- Input validation and prompt security measures
- Infrastructure security recommendations
- Compliance and governance frameworks
- Update README.md to reference new security.md file
- Eliminate redundancy between deployment-guide.md and deployment-and-security.md
- Improve documentation organization with clear separation of concerns
* config: Replace hardcoded endpoints with placeholder domains
- Update OpenAPI specifications to use placeholder domain 'your-backend-domain.com'
- k8s_api.yaml: mcpgateway.ddns.net:8011 -> your-backend-domain.com:8011
- logs_api.yaml: mcpgateway.ddns.net:8012 -> your-backend-domain.com:8012
- metrics_api.yaml: mcpgateway.ddns.net:8013 -> your-backend-domain.com:8013
- runbooks_api.yaml: mcpgateway.ddns.net:8014 -> your-backend-domain.com:8014
- Update agent configuration to use placeholder AgentCore gateway endpoint
- agent_config.yaml: Replace specific gateway ID with 'your-agentcore-gateway-endpoint'
- Improve security by removing hardcoded production endpoints from repository
- Enable template-based configuration that users can customize during setup
- Align with existing documentation patterns for placeholder domain replacement
* Remove .aws-sam build artifacts
Deleted .aws-sam folder as it contains build artifacts that are generated
during sam build and should not be checked into version control.
* Fix MCP 1.10.0 compatibility and add Docker support
- Fix MCP client for 1.10.0 API changes (streamablehttp_client now returns 3-tuple)
- Add comprehensive .gitignore for AWS Operations Agent project
- Add Dockerfiles for agent-lambda and mcp-tool-lambda
- Update requirements.txt to use mcp==1.10.0
- Add fallback DirectMCPClient class for better error handling
* Update documentation and scripts
- Update SETUP.md with latest deployment instructions
- Modify create-target.py script for improved functionality
* Remove .gitignore files from AgentCore samples repository
- Deleted 6 .gitignore files to prevent conflicts with parent repository
- Includes root .gitignore and use-case specific .gitignore files
- Cleaned up: customer-support-assistant, SRE-agent, AWS-operations-agent, and video-games-sales-assistant directories
- Enables consistent gitignore management at repository level
* Update Okta PKCE setup documentation and nginx configuration
- Added nginx installation instructions for macOS with Homebrew
- Referenced official nginx documentation for other platforms
- Updated OAuth parameter configuration to reflect current HTML form structure
- Removed hardcoded absolute paths from nginx configuration and replaced with placeholders
- Updated token usage instructions to use correct entry point (main.py)
- Added instructions for users to update nginx configuration paths
* Improve setup documentation consistency
- Confirmed virtual environment setup is already covered in Step 1
- No duplication needed in gateway creation section
- Documentation structure remains clear and concise
* Remove .aws-sam build artifacts
Deleted .aws-sam folder as it contains build artifacts that are generated
during sam build and should not be checked into version control.
🤖 Generated with [Claude Code](https://claude.ai/code)
Co-Authored-By: Claude <noreply@anthropic.com>
* Fix MCP 1.10.0 compatibility and add Docker support
- Fix MCP client for 1.10.0 API changes (streamablehttp_client now returns 3-tuple)
- Add comprehensive .gitignore for AWS Operations Agent project
- Add Dockerfiles for agent-lambda and mcp-tool-lambda
- Update requirements.txt to use mcp==1.10.0
- Add fallback DirectMCPClient class for better error handling
* Update documentation and scripts
- Update SETUP.md with latest deployment instructions
- Modify create-target.py script for improved functionality
* Remove .gitignore files from AgentCore samples repository
- Deleted 6 .gitignore files to prevent conflicts with parent repository
- Includes root .gitignore and use-case specific .gitignore files
- Cleaned up: customer-support-assistant, SRE-agent, AWS-operations-agent, and video-games-sales-assistant directories
- Enables consistent gitignore management at repository level
🤖 Generated with [Claude Code](https://claude.ai/code)
Co-Authored-By: Claude <noreply@anthropic.com>
---------
Co-authored-by: name <alias@amazon.com>
Co-authored-by: Claude <noreply@anthropic.com>
* updated the cognito setup, gateway creation using agentcore sdk
* added the config directory with test file
* updated the automation scripts and simplified the approach to install and test it
* updated the tool description in the target creation and updated readme file
* added agentcore observability for agentcore gateway
* updated architecture diagram
* Update observability section in README.md with more concise information
* removed old folder directory
* updated the tool description in the targets
* Remove .aws-sam build artifacts
Deleted .aws-sam folder as it contains build artifacts that are generated
during sam build and should not be checked into version control.
🤖 Generated with [Claude Code](https://claude.ai/code)
Co-Authored-By: Claude <noreply@anthropic.com>
* Fix MCP 1.10.0 compatibility and add Docker support
- Fix MCP client for 1.10.0 API changes (streamablehttp_client now returns 3-tuple)
- Add comprehensive .gitignore for AWS Operations Agent project
- Add Dockerfiles for agent-lambda and mcp-tool-lambda
- Update requirements.txt to use mcp==1.10.0
- Add fallback DirectMCPClient class for better error handling
* Update documentation and scripts
- Update SETUP.md with latest deployment instructions
- Modify create-target.py script for improved functionality
---------
Co-authored-by: name <alias@amazon.com>
Co-authored-by: Claude <noreply@anthropic.com>
* modified readme with correction wording
* Spelling mistake in 'In this tutorial can will the Amazon Bedrock AgentCore Python SDK to easily package your artifacts and deploy them to AgentCore runtime.' It's AgentCore not AgentCode
---------
Co-authored-by: Shubhankar Sumar <sssumar@amazon.co.uk>
* Data Analyst Assistant Solution with Amazon Bedrock AgentCore
* Data Analyst Assistant Solution with Amazon Bedrock AgentCore
* Data Analyst Assistant Solution with Amazon Bedrock AgentCore
* Data Analyst Assistant Solution with Amazon Bedrock AgentCore
* Data Analyst Assistant Solution with Amazon Bedrock AgentCore
* Data Analyst Assistant Solution with Amazon Bedrock AgentCore
* Data Analyst Assistant Solution with Amazon Bedrock AgentCore
* File updates and content
---------
Co-authored-by: Uriel Ramirez <beralfon@amazon.com>
Deleted .aws-sam folder as it contains build artifacts that are generated
during sam build and should not be checked into version control.
🤖 Generated with [Claude Code](https://claude.ai/code)
Co-authored-by: name <alias@amazon.com>
Co-authored-by: Claude <noreply@anthropic.com>
* Updated token validity for the cognito user pool client
* Updated token validity for the cognito user pool client
---------
Co-authored-by: Satveer Khurpa <khurpas@amazon.com>
* Data Analyst Assistant Solution with Amazon Bedrock AgentCore
* Data Analyst Assistant Solution with Amazon Bedrock AgentCore
* Data Analyst Assistant Solution with Amazon Bedrock AgentCore
* Data Analyst Assistant Solution with Amazon Bedrock AgentCore
* Data Analyst Assistant Solution with Amazon Bedrock AgentCore
* Data Analyst Assistant Solution with Amazon Bedrock AgentCore
* Data Analyst Assistant Solution with Amazon Bedrock AgentCore
---------
Co-authored-by: Uriel Ramirez <beralfon@amazon.com>
* Clean up of runtime tutorials
* Clean up of runtime tutorials
* Adding streaming example
* Adding handling context example
* adding handling payloads example
* adding handling payloads example
* Improve AgentCore tools examples:
1. Remove browser references from dynamic_research_agent_langgraph.py
2. Remove unnecessary wait time in run_live_viewer.py
3. Update README files with correct path instructions for running examples
4. Fix step numbering in run_live_viewer.py
* Improve AgentCore tools examples
* Updated research agent example
* Updated research agent example
* Implement robust research agent with Bedrock AgentCore
- Simplify LangGraph workflow to linear execution pattern
- Add direct data generation to avoid file system dependency issues
- Improve error handling with graceful fallback strategies
* fix for sample files path
---------
Co-authored-by: “Sundar” <“sdraghav@amazon.com”>
Co-authored-by: rahullks <rahullks@gmail.com>
