Skip to main content

Opt-out For AWS Lambda Updates. Why and how?

Opt Out For AWS Lambda Updates. Why and how?

Opt Out For AWS Lambda Updates. Why and how?

AWS Lambda is a Serverless computing platform that enables users to run code without having to manage servers. It provides a fully managed…

Opt Out For AWS Lambda Updates. Why and how?

AWS Lambda is a Serverless computing platform that enables users to run code without having to manage servers. It provides a fully managed environment for executing your code, which includes runtime, operating system, and system libraries.

The AWS Lambda execution environment is the environment in which your Lambda function code is executed. It is an isolated environment that has its own resources and dependencies, and it runs on Amazon Linux, a distribution of Linux specifically designed for cloud computing.

AWS Lambda automatically patches the underlying infrastructure for your functions, so you don’t have to worry about managing operating system or runtime updates. This includes security patches for the Amazon Linux operating system, runtime updates for the supported programming languages, and updates to the system libraries that are included in the execution environment.

By default all Lambda functions will get these updates and security patches, but what if you don’t want to do that for specific reasons. What if you want to have more control of the Lambda environment. Well there is a good news if you are looking for that. Few week ago AWS has announced runtime management controls which provide more visibility and control over when Lambda applies runtime updates to your functions. They are also changing how your functions get updated.

Let’s see the new configuration in action.

Head over to the Lambda Console and create a new Function.

Now that it’s done. Go to the Code tab in your function details page.

Click Edit runtime management configuration button.

Now we have multiple choices.

  • Auto: Your functions will get updates and security patches as usual.
  • Function Update: Your function will get updates and security patches only when you update your function code.
  • Manual: You won’t get any updates.

The runtime version ARN is a unique identifier for the patching version of a particular runtime. Every time Lambda updates the runtime to apply security and other patches, it creates a new runtime version, with a new ARN.

In conclusion, I don’t recommend opting out of the security updates. But if you have a specific use case for that, you can go ahead and manually manage the updates.

Labels:

Popular posts from this blog

Concurrency With Boto3

Concurrency with Boto3 Concurrency with Boto3 Asyncio provides set of tools for concurrent programming in Python. In a very simple sense it does this by having an event loop execute a… Concurrency in Boto3 Asyncio provides a set of tools for concurrent programming in Python . In a very simple sense, it does this by having an event loop execute a collection of tasks, with a key difference being that each task chooses when to yield control back to the event loop. Asyncio is a good fit for IO-bound and high-level structured network code. Boto3 (AWS Python SDK) falls into this category. A lot of existing libraries are not ready to be used with asyncio out of the box. They may block, or depend on concurrency features not available through the module. It’s still possible to use those libraries in an application based on asyncio by using an executor from concurrent.futures to run the code either in a separate thread or a separate process. The run_in_executor() method of the event...
Read more

Manage MongoDB Atlas Deployments with AWS CDK

Manage MongoDB Atlas Deployments with AWS CDK Manage MongoDB Atlas Deployments with AWS CDK MongoDB Atlas is a fully-managed cloud-based database service offered by MongoDB. It offers a variety of features such as automatic… Manage MongoDB Atlas Deployments with AWS CDK MongoDB Atlas is a fully-managed cloud-based database service offered by MongoDB. It offers a variety of features such as automatic backups, automatic scaling, and easy integration with other cloud services. AWS Cloud Development Kit(CDK) is a tool provided by Amazon Web Services (AWS) that allows you to define infrastructure as code using familiar programming languages such as TypeScript, JavaScript, Python, and others. MongoDB recently announced general availability for Atlas Integrations for AWS CloudFormation and CDK. In this article, we will go through the process of deploying MongoDB Atlas with AWS CDK. Prerequisites Before we start, you will need the following: An AWS account AWS CDK installed on your lo...
Read more

AWS Lambda Function URLs

AWS Lambda Function URLs AWS Lambda Function URLs AWS Lambda is a Serverless computing service offered by Amazon Web Services (AWS) that allows developers to run code without provisioning… AWS Lambda Function URLs AWS Lambda AWS Lambda is a Serverless computing service offered by Amazon Web Services ( AWS ) that allows developers to run code without provisioning or managing servers. In this tutorial, we will explore AWS Lambda Function URLs , which are the endpoints that allow you to invoke your Lambda functions. AWS Lambda Function URLs are unique HTTP endpoints that you can create using AWS Console, SDK or any other IaC tool. These URLs are used to trigger your Lambda function, and they can be integrated with a variety of workloads. Function URLs are dual stack-enabled, supporting IPv4 and IPv6. After you configure a function URL for your function, you can invoke your function through its HTTP(S) endpoint via a web browser, curl, Postman, or any HTTP client. Once you create ...
Read more