Amazon Bedrock AgentCore Goes GA: Enterprise-Grade Infrastructure for Production AI Agents

Published:
  Lastmod: 2025-10-14
Random Notes
by Ernest Chiang

Post Title Image (Caption: Early morning at a coffee shop—croissant, coffee, and conversations about AI Agents and life. Taken at Anchorhead Coffee, Seattle. Image source: Ernest.)

✳️ tl;dr

  • Back in late August, I traveled to North America thinking I’d catch the tail end of summer. Instead, everywhere I went—Bay Area, Seattle—everyone was talking about AI Agents and Agentic Workflows.
  • I was fortunate to get hands-on with Amazon Bedrock AgentCore after the AWS New York Summit.
  • Lucky for me, I had presented on Firecracker microVMs at COSCUP a few years back, so I already knew how powerful and secure this isolation technology is.
  • Back then, I spun up an i3.metal EC2 bare metal instance and managed to launch 4,000 microVMs with Firecracker in under 90 seconds 1, visualizing the entire boot process. Startup speed? Not a concern. (Though it depends on your use case—but I’d argue we don’t need to remind AI Agents that “haste makes waste” :p)
  • Even Cloudflare Containers borrowed Firecracker’s open-source project to power their services 2.
  • Today (2025-10-13), AWS officially launched Amazon Bedrock AgentCore—an enterprise-grade agentic platform designed to help organizations move AI agents from prototype to production 3.
  • The AgentCore SDK has been downloaded over 1 million times, with early adopters including Clearwater Analytics, Ericsson, Sony, Thomson Reuters, and other cross-industry enterprises.
  • Built on microVM technology for enterprise-grade security isolation—each agent session runs in its own isolated virtual machine instance, preventing data leakage and cross-tenant attacks.
  • AgentCore offers composable services supporting multiple frameworks: CrewAI, Google ADK, LangGraph, LlamaIndex, OpenAI Agents SDK, Strands Agents, and more.
  • Works with models on Amazon Bedrock, as well as external models like OpenAI and Gemini.
  • AgentCore Code Interpreter enables agents to safely generate and execute code in isolated environments.
  • AgentCore Browser allows agents to interact with web applications at scale.
  • AgentCore Gateway transforms existing APIs and AWS Lambda functions into agent-compatible tools.
  • Gateway connects to existing MCP servers and integrates third-party tools like Slack, Jira, Asana, and Zendesk.
  • AgentCore Identity enables agents to securely access and operate various tools using OAuth standards.
  • AgentCore Memory helps build context-aware agents without managing complex memory infrastructure.
  • Provides industry-leading security through microVM technology, with each agent session in its own isolated compute environment.
  • AgentCore’s MCP server integrates with IDEs like Kiro or Cursor AI.
  • Offers an industry-leading 8-hour runtime for long-running tasks.
  • Now that it’s GA (Generally Available), no more waiting in queue—just spin it up and start playing!
  • Deploying AI Agents requires integration with existing workflows, fine-tuning, and alignment with organizational goals.
  • For those interested in Process Automation whiteboards, check out the extended reading 4.
  • P.S. On my return trip through Tokyo in September, I actually got hit by the tail end of summer there—scorching hot… Major respect to the Japanese salarymen in full suits. Orz…

✳️ Knowledge Graph

(More about Knowledge Graph…)

%%{init: {'theme':'default'}}%%
graph LR
    %% CRITICAL: Color coding based on type
    %% Orange #FF8000 = Concept Classes (abstract, multiple implementations possible)
    %% Blue #0080FF = Instances (concrete implementations)

    classDef conceptClass fill:#FF8000,stroke:#CC6600,stroke-width:2px,color:#000
    classDef instance fill:#0080FF,stroke:#0066CC,stroke-width:2px,color:#fff

    %% ==================== CORE PLATFORM ====================
    AgentCore[Amazon Bedrock AgentCore]:::instance

    %% ==================== SERVICE LAYER ====================
    subgraph ServiceLayer[AgentCore Service Layer - All Instances]
        Runtime[AgentCore Runtime]:::instance
        Memory[AgentCore Memory]:::instance
        Observability[AgentCore Observability]:::instance
        Gateway[AgentCore Gateway]:::instance
        Identity[AgentCore Identity]:::instance
        CodeInterpreter[AgentCore Code Interpreter]:::instance
        Browser[AgentCore Browser]:::instance
        SDK[AgentCore SDK]:::instance
        MCP[MCP Server]:::instance
    end

    %% ==================== INFRASTRUCTURE CONCEPTS & INSTANCES ====================
    subgraph InfraLayer[Infrastructure Layer]
        subgraph InfraConcepts[Concepts - Design Patterns]
            Serverless[Serverless Computing]:::conceptClass
            StateMgmt[State Management]:::conceptClass
            SecurityIsolation[Security Isolation]:::conceptClass
            IAM[Identity Access Management]:::conceptClass
            APIGateway[API Gateway Pattern]:::conceptClass
            APM[Application Performance Monitoring]:::conceptClass
        end

        subgraph InfraInstances[Instances - Concrete Technologies]
            MicroVM[MicroVM Technology]:::instance
            OAuth[OAuth 2.0]:::instance
            VPC[VPC and PrivateLink]:::instance
        end
    end

    %% ==================== ORCHESTRATION CONCEPTS & INSTANCES ====================
    subgraph OrchLayer[Agent Orchestration Layer]
        subgraph OrchConcepts[Concepts - Orchestration Patterns]
            AgentOrch[Agent Orchestration]:::conceptClass
            MultiAgent[Multi-agent Systems]:::conceptClass
        end

        subgraph OrchInstances[Instances - Framework Implementations]
            CrewAI[CrewAI]:::instance
            LangGraph[LangGraph]:::instance
            LlamaIndex[LlamaIndex]:::instance
            OpenAISDK[OpenAI Agents SDK]:::instance
        end
    end

    %% ==================== AI MODELS - ALL INSTANCES ====================
    subgraph ModelLayer[AI Model Layer - All Instances]
        Bedrock[Amazon Bedrock Models]:::instance
        OpenAI[OpenAI Models]:::instance
        Gemini[Gemini Models]:::instance
    end

    %% ==================== EXTERNAL INTEGRATIONS - ALL INSTANCES ====================
    subgraph IntegrationLayer[External Integration Layer - All Instances]
        subgraph BusinessTools[Business Tools]
            Slack[Slack]:::instance
            Jira[Jira]:::instance
            Asana[Asana]:::instance
        end

        subgraph MonitoringTools[Monitoring Tools]
            Datadog[Datadog]:::instance
            Dynatrace[Dynatrace]:::instance
            LangSmith[LangSmith]:::instance
        end
    end

    %% ==================== APPLICATION LAYER ====================
    subgraph ApplicationLayer[Application Layer]
        subgraph AppConcepts[Concepts - Industry Domains]
            Healthcare[Healthcare Applications]:::conceptClass
            Manufacturing[Manufacturing Automation]:::conceptClass
            Telecom[Telecommunications]:::conceptClass
            Advertising[Campaign Automation]:::conceptClass
        end

        subgraph AppInstances[Instances - Customer Implementations]
            CohereHealth[Cohere Review Resolve]:::instance
            AmazonDevices[Amazon Devices Solution]:::instance
            Ericsson[Ericsson Implementation]:::instance
            Epsilon[Epsilon Solution]:::instance
            Sony[Sony AI Platform]:::instance
        end
    end

    %% ==================== CORE RELATIONSHIPS ====================

    %% Platform provides Services
    AgentCore -->|provides| Runtime
    AgentCore -->|provides| Memory
    AgentCore -->|provides| Observability
    AgentCore -->|provides| Gateway
    AgentCore -->|provides| Identity
    AgentCore -->|provides| CodeInterpreter
    AgentCore -->|provides| Browser
    AgentCore -->|exposes| SDK
    AgentCore -->|includes| MCP

    %% Services implement Concepts using Instances
    Runtime -->|implements| Serverless
    Runtime -->|uses| MicroVM
    Memory -->|implements| StateMgmt
    Observability -->|implements| APM
    Gateway -->|implements| APIGateway
    Identity -->|implements| IAM
    MicroVM -->|provides| SecurityIsolation

    %% Security implementations
    Identity -->|uses| OAuth
    Runtime -->|deploys in| VPC

    %% External integrations
    Gateway -->|connects to| Slack
    Gateway -->|connects to| Jira
    Gateway -->|connects to| Asana
    Observability -->|integrates with| Datadog
    Observability -->|integrates with| Dynatrace
    Observability -->|integrates with| LangSmith

    %% Framework support
    AgentCore -->|supports| CrewAI
    AgentCore -->|supports| LangGraph
    AgentCore -->|supports| LlamaIndex
    AgentCore -->|supports| OpenAISDK
    SDK -->|enables| AgentOrch
    AgentCore -->|implements| MultiAgent

    %% Model support
    AgentCore -->|works with| Bedrock
    AgentCore -->|works with| OpenAI
    AgentCore -->|works with| Gemini

    %% Industry applications
    AgentCore -->|powers| Healthcare
    AgentCore -->|powers| Manufacturing
    AgentCore -->|powers| Telecom
    AgentCore -->|powers| Advertising

    %% Customer implementations
    Healthcare -->|implemented by| CohereHealth
    Manufacturing -->|implemented by| AmazonDevices
    Telecom -->|implemented by| Ericsson
    Advertising -->|implemented by| Epsilon
    MultiAgent -->|implemented by| Sony

✳️ Further Reading

  1. Playing With Firecracker VMM at COSCUP 2020 | Ernest Chiang ↩︎

  2. Firecracker-Powered Containers Arrive on Cloudflare | Ernest Chiang ↩︎

  3. Make agents a reality with Amazon Bedrock AgentCore: Now generally available | Artificial Intelligence ↩︎

  4. Process Automation Heptabase Whiteboard ↩︎