Skip to main content

Opt-out For AWS Lambda Updates. Why and how?

Opt Out For AWS Lambda Updates. Why and how?

Opt Out For AWS Lambda Updates. Why and how?

AWS Lambda is a Serverless computing platform that enables users to run code without having to manage servers. It provides a fully managed…

Opt Out For AWS Lambda Updates. Why and how?

AWS Lambda is a Serverless computing platform that enables users to run code without having to manage servers. It provides a fully managed environment for executing your code, which includes runtime, operating system, and system libraries.

The AWS Lambda execution environment is the environment in which your Lambda function code is executed. It is an isolated environment that has its own resources and dependencies, and it runs on Amazon Linux, a distribution of Linux specifically designed for cloud computing.

AWS Lambda automatically patches the underlying infrastructure for your functions, so you don’t have to worry about managing operating system or runtime updates. This includes security patches for the Amazon Linux operating system, runtime updates for the supported programming languages, and updates to the system libraries that are included in the execution environment.

By default all Lambda functions will get these updates and security patches, but what if you don’t want to do that for specific reasons. What if you want to have more control of the Lambda environment. Well there is a good news if you are looking for that. Few week ago AWS has announced runtime management controls which provide more visibility and control over when Lambda applies runtime updates to your functions. They are also changing how your functions get updated.

Let’s see the new configuration in action.

Head over to the Lambda Console and create a new Function.

Now that it’s done. Go to the Code tab in your function details page.

Click Edit runtime management configuration button.

Now we have multiple choices.

  • Auto: Your functions will get updates and security patches as usual.
  • Function Update: Your function will get updates and security patches only when you update your function code.
  • Manual: You won’t get any updates.

The runtime version ARN is a unique identifier for the patching version of a particular runtime. Every time Lambda updates the runtime to apply security and other patches, it creates a new runtime version, with a new ARN.

In conclusion, I don’t recommend opting out of the security updates. But if you have a specific use case for that, you can go ahead and manually manage the updates.

Labels:

Popular posts from this blog

Concurrency With Boto3

Concurrency with Boto3 Concurrency with Boto3 Asyncio provides set of tools for concurrent programming in Python. In a very simple sense it does this by having an event loop execute a… Concurrency in Boto3 Asyncio provides a set of tools for concurrent programming in Python . In a very simple sense, it does this by having an event loop execute a collection of tasks, with a key difference being that each task chooses when to yield control back to the event loop. Asyncio is a good fit for IO-bound and high-level structured network code. Boto3 (AWS Python SDK) falls into this category. A lot of existing libraries are not ready to be used with asyncio out of the box. They may block, or depend on concurrency features not available through the module. It’s still possible to use those libraries in an application based on asyncio by using an executor from concurrent.futures to run the code either in a separate thread or a separate process. The run_in_executor() method of the event...
Read more

AWS Lambda Function URLs

AWS Lambda Function URLs AWS Lambda Function URLs AWS Lambda is a Serverless computing service offered by Amazon Web Services (AWS) that allows developers to run code without provisioning… AWS Lambda Function URLs AWS Lambda AWS Lambda is a Serverless computing service offered by Amazon Web Services ( AWS ) that allows developers to run code without provisioning or managing servers. In this tutorial, we will explore AWS Lambda Function URLs , which are the endpoints that allow you to invoke your Lambda functions. AWS Lambda Function URLs are unique HTTP endpoints that you can create using AWS Console, SDK or any other IaC tool. These URLs are used to trigger your Lambda function, and they can be integrated with a variety of workloads. Function URLs are dual stack-enabled, supporting IPv4 and IPv6. After you configure a function URL for your function, you can invoke your function through its HTTP(S) endpoint via a web browser, curl, Postman, or any HTTP client. Once you create ...
Read more

DNS Failover with Route53

DNS Failover with Route53 DNS Failover with Route53 Route 53‘s DNS Failover feature gives you the power to monitor your website and automatically route your visitors to a backup site if it… DNS Failover with Route53 Route 53 ‘s DNS Failover feature gives you the power to monitor your website and automatically route your visitors to a backup site if the main target is not healthy. To showcase this feature, we are going to deploy an application, which we built in this blog post , to two different AWS regions. We are also going to set active-passive failover in Route53, then we will remove the application from one region and we’ll observe how DNS queries will react to the changes. AWS describes the failover scenarios in 3 different categories Active-passive : Route 53 actively returns a primary resource. In case of failure, Route 53 returns the backup resource. Configured using a failover policy. Active-active : Route 53 actively returns more than one resource. In case of failure...
Read more