公开(公告)号：US11593270B1

公开(公告)日：2023-02-28

申请号：US17105233

申请日：2020-11-25

Applicant: Amazon Technologies, Inc.

Inventor： Marc Brooker ,  Philip Daniel Piwonka ,  Nare Hayrapetyan

IPC: G06F11/00 ,  G06F12/0891 ,  G06F16/22 ,  G06F11/10

Abstract: Systems and methods are described for providing rapid access to data objects stored in a cache. Rather than storing data objects directly, each object can be broken into a number of parts via erasure coding, which enables the object to be generated from less than all parts. When servicing a request for the data object, a device can attempt to retrieve all parts, but begin to generate the data object as soon as a sufficient number of parts is retrieved, even if requests for other parts are outstanding. In this way, the data object can be retrieved without delay due to the slowest requests. For example, where one or more requests timeout, such as due to failure of cache devices, this timeout may have no effect on time required to retrieve the data object from the cache.

公开(公告)号：US09910654B1

公开(公告)日：2018-03-06

申请号：US14869459

申请日：2015-09-29

Applicant: Amazon Technologies, Inc.

Inventor： Robert Allan Brigham, II ,  Karen Kapoor ,  Andrew Thomas Troutman ,  Jitendra Singh Rajput ,  Kai Steffen Gorman ,  Nare Hayrapetyan ,  Thomas Schmitt

IPC: G06F9/44 ,  G06F9/445 ,  G06F11/36

CPC classification number: G06F8/61 ,  G06F11/3688 ,  G06F11/3692

Abstract: Technologies are disclosed herein for automated software release lifecycle management. In particular, a software release management network service is disclosed that provides functionality for allowing a software developer to automate aspects of a software release pipeline. A software release pipeline can have multiple stages, each of which can have multiple actions. The actions can include internal actions that utilize network services internal to a service provider network. The actions can also include external actions that utilize network services that are external to a service provider network. The internal and external actions can perform various release-related functions, such as obtaining source code, building the source code, deploying built program code, and for performing tests. Stage gates and/or action gates can also be defined for conditional execution of the next stage or action in a software release pipeline, respectively. A gate bypass can also be specified to override stage or action gates.

公开(公告)号：US20230012869A1

公开(公告)日：2023-01-19

申请号：US17941613

申请日：2022-09-09

Applicant: Amazon Technologies, Inc.

Inventor： Anthony Joseph Suarez ,  Scott Kerns Windsor ,  Nare Hayrapetyan ,  Daniel Robert Gerdesmeier ,  Pooja Kalpana Prakash

IPC: G06F8/71 ,  G06F9/455 ,  G06F21/53 ,  G06F8/61 ,  G06F21/62

Abstract: A request to store a container image is received from a device associated with a customer of a computing resource service provider. Validity of a security token associated with the request is authenticated using a cryptographic key maintained as a secret by the computing resource service provider. One or more layers of the container image is built based at least in part on at least one build artifact to form a set of built layers. The software image including the set of built layers is stored in a repository associated with the customer. A manifest of metadata for the set of built layers is stored in a database of a structured data store. The container image is obtained in the form of an obtained container image. The obtained container image is deployed as the software container in at least one virtual machine instance associated with the customer.

公开(公告)号：US20210042108A1

公开(公告)日：2021-02-11

申请号：US16940261

申请日：2020-07-27

Applicant: Amazon Technologies, Inc.

Inventor： Anthony Joseph Suarez ,  Scott Kerns Windsor ,  Nare Hayrapetyan ,  Daniel Robert Gerdesmeier ,  Pooja Kalpana Prakash

IPC: G06F8/71 ,  G06F9/455 ,  G06F21/53 ,  G06F8/61 ,  G06F21/62

Abstract: A request to store a container image is received from a device associated with a customer of a computing resource service provider. Validity of a security token associated with the request is authenticated using a cryptographic key maintained as a secret by the computing resource service provider. One or more layers of the container image is built based at least in part on at least one build artifact to form a set of built layers. The software image including the set of built layers is stored in a repository associated with the customer. A manifest of metadata for the set of built layers is stored in a database of a structured data store. The container image is obtained in the form of an obtained container image. The obtained container image is deployed as the software container in at least one virtual machine instance associated with the customer.

公开(公告)号：US20170180346A1

公开(公告)日：2017-06-22

申请号：US14975631

申请日：2015-12-18

Applicant: Amazon Technologies, Inc.

Inventor： Anthony Joseph Suarez ,  Scott Kerns Windsor ,  Nare Hayrapetyan ,  Daniel Robert Gerdesmeier ,  Pooja Kalpana Prakash

IPC: H04L29/06 ,  G06F9/44 ,  G06F9/445 ,  G06F9/455 ,  G06F21/53

CPC classification number: G06F8/71 ,  G06F8/63 ,  G06F9/45558 ,  G06F21/53 ,  G06F21/6209 ,  G06F2009/4557 ,  G06F2221/033

Abstract: A request to store, in first data store associated with a customer of a computing resource service provider, a software image is received, the request including a set of layers of the software image to be stored. As a result of successful authentication of the request, based at least in part on a security token included with the request, a subset of layers of the software image that have not previously been stored in the first data store are determined, based at least in part on first metadata obtained from a second data store, the subset of layers in the first data store are stored, second metadata about the subset of layers are stored in the second data store, and the software image is caused to be launched in a software container of an instance based at least in part on the subset of layers.

公开(公告)号：US11487530B2

公开(公告)日：2022-11-01

申请号：US16940261

申请日：2020-07-27

Applicant: Amazon Technologies, Inc.

Inventor： Anthony Joseph Suarez ,  Scott Kerns Windsor ,  Nare Hayrapetyan ,  Daniel Robert Gerdesmeier ,  Pooja Kalpana Prakash

IPC: G06F21/00 ,  G06F8/71 ,  G06F9/455 ,  G06F21/53 ,  G06F8/61 ,  G06F21/62

Abstract: A request to update a software container image within a container registry hosted by a computing resource service provider is received from an entity associated with a customer account with the computing resource service provider, where the container registry is a scalable distributed data storage service. The software container image is stored in the container registry in association with the customer account. A layer of the software container image stored in the container registry is scanned for a reference identifier associated with a security vulnerability as a result of said scan finding the reference identifier within the software container image, notice is provided to the entity indicating that the security vulnerability was found. Software within the software container image is updated based at least in part on the vulnerability scan; and the update software is deployed.

公开(公告)号：US10725775B2

公开(公告)日：2020-07-28

申请号：US16383523

申请日：2019-04-12

Applicant: Amazon Technologies, Inc.

Inventor： Anthony Joseph Suarez ,  Scott Kerns Windsor ,  Nare Hayrapetyan ,  Daniel Robert Gerdesmeier ,  Pooja Kalpana Prakash

IPC: G06F21/00 ,  G06F8/71 ,  G06F9/455 ,  G06F21/53 ,  G06F8/61 ,  G06F21/62

Abstract: A request to store a container image is received from a device associated with a customer of a computing resource service provider. Validity of a security token associated with the request is authenticated using a cryptographic key maintained as a secret by the computing resource service provider. One or more layers of the container image is built based at least in part on at least one build artifact to form a set of built layers. The software image including the set of built layers is stored in a repository associated with the customer. A manifest of metadata for the set of built layers is stored in a database of a structured data store. The container image is obtained in the form of an obtained container image. The obtained container image is deployed as the software container in at least one virtual machine instance associated with the customer.

公开(公告)号：US10261782B2

公开(公告)日：2019-04-16

申请号：US14975631

申请日：2015-12-18

Applicant: Amazon Technologies, Inc.

Inventor： Anthony Joseph Suarez ,  Scott Kerns Windsor ,  Nare Hayrapetyan ,  Daniel Robert Gerdesmeier ,  Pooja Kalpana Prakash

IPC: H04L29/06 ,  G06F8/71 ,  G06F9/455 ,  G06F21/53 ,  G06F8/61 ,  G06F21/62

Abstract: A request to store, in first data store associated with a customer of a computing resource service provider, a software image is received, the request including a set of layers of the software image to be stored. As a result of successful authentication of the request, based at least in part on a security token included with the request, a subset of layers of the software image that have not previously been stored in the first data store are determined, based at least in part on first metadata obtained from a second data store, the subset of layers in the first data store are stored, second metadata about the subset of layers are stored in the second data store, and the software image is caused to be launched in a software container of an instance based at least in part on the subset of layers.

公开(公告)号：US11789723B2

公开(公告)日：2023-10-17

申请号：US17941613

申请日：2022-09-09

Applicant: Amazon Technologies, Inc.

Inventor： Anthony Joseph Suarez ,  Scott Kerns Windsor ,  Nare Hayrapetyan ,  Daniel Robert Gerdesmeier ,  Pooja Kalpana Prakash

IPC: G06F21/00 ,  G06F8/71 ,  G06F9/455 ,  G06F21/53 ,  G06F8/61 ,  G06F21/62

CPC classification number: G06F8/71 ,  G06F8/63 ,  G06F9/45558 ,  G06F21/53 ,  G06F21/6209 ,  G06F2009/4557 ,  G06F2221/033

Abstract: A request to store a container image is received from a device associated with a customer of a computing resource service provider. Validity of a security token associated with the request is authenticated using a cryptographic key maintained as a secret by the computing resource service provider. One or more layers of the container image is built based at least in part on at least one build artifact to form a set of built layers. The software image including the set of built layers is stored in a repository associated with the customer. A manifest of metadata for the set of built layers is stored in a database of a structured data store. The container image is obtained in the form of an obtained container image. The obtained container image is deployed as the software container in at least one virtual machine instance associated with the customer.

公开(公告)号：US20190235861A1

公开(公告)日：2019-08-01

申请号：US16383523

申请日：2019-04-12

Applicant: Amazon Technologies, Inc.

Inventor： Anthony Joseph Suarez ,  Scott Kerns Windsor ,  Nare Hayrapetyan ,  Daniel Robert Gerdesmeier ,  Pooja Kalpana Prakash

IPC: G06F8/71 ,  G06F21/53 ,  G06F21/62 ,  G06F9/455 ,  G06F8/61

CPC classification number: G06F8/71 ,  G06F8/63 ,  G06F9/45558 ,  G06F21/53 ,  G06F21/6209 ,  G06F2009/4557 ,  G06F2221/033

Abstract: A request to store a container image is received from a device associated with a customer of a computing resource service provider. Validity of a security token associated with the request is authenticated using a cryptographic key maintained as a secret by the computing resource service provider. One or more layers of the container image is built based at least in part on at least one build artifact to form a set of built layers. The software image including the set of built layers is stored in a repository associated with the customer. A manifest of metadata for the set of built layers is stored in a database of a structured data store. The container image is obtained in the form of an obtained container image. The obtained container image is deployed as the software container in at least one virtual machine instance associated with the customer.