product updateAmazon Web Services

AWS Bedrock AgentCore adds persistent filesystem storage and shell command execution

TL;DR

Amazon Bedrock AgentCore Runtime now offers managed session storage to persist agent filesystem state across stop/resume cycles and InvokeAgentRuntimeCommand for executing shell commands directly within agent microVMs. The features address two core challenges in production agent workflows: ephemeral filesystems that reset between sessions and the inability to execute deterministic operations without routing them through LLMs.

3 min read
0

AWS Bedrock AgentCore Adds Persistent Filesystem Storage and Shell Command Execution

Amazon Web Services has released two capabilities for Bedrock AgentCore Runtime that address core limitations in production agentic workflows: managed session storage (public preview) for persistent filesystem state and InvokeAgentRuntimeCommand for executing shell commands directly within agent sessions.

The Problem: Ephemeral Agent Filesystems

Bedrock AgentCore Runtime isolates each session in a dedicated microVM with its own kernel, memory, and filesystem. This architecture provides strong security boundaries but creates a critical limitation: when a microVM terminates—either explicitly or through idle timeout—all agent-created artifacts disappear. Agents that spend 20 minutes scaffolding projects, installing dependencies, and generating code must repeat this work entirely when resumed.

AWS identified two specific friction points teams encounter in production:

  1. Ephemeral filesystem state: Agent sessions lose all generated files, installed packages, git history, and configuration when stopped
  2. Deterministic operation routing: Running tests or executing git commands forces teams to either route them through the LLM as tool calls (adding latency and non-determinism) or build custom orchestration logic outside the runtime

Managed Session Storage: Persistent Agent Filesystem State

Managed session storage provides agents with a persistent directory that survives stop/resume cycles. Data persists at the runtime level—when a microVM terminates and is replaced, the filesystem remains intact.

Configuration requires adding sessionStorage to the agent runtime's filesystem configuration:

aws bedrock-agentcore create-agent-runtime \
  --filesystem-configurations '[{ "sessionStorage": { "mountPath": "/mnt/workspace" } }]'

Alternatively, using AWS SDK for Python:

control_client.create_agent_runtime(
  filesystemConfigurations=[{
    'sessionStorage': {
      'mountPath': '/mnt/workspace'
    }
  }]
)

Once configured, any files written to the mount path are automatically persisted. Agents require no code changes—no special APIs, serialization, or save/restore logic. Files written to /mnt/workspace on Day 1 remain accessible when the same runtime-session-id is invoked on Day 2.

By default, session storage data is retained for 14 days of idle time. When an agent endpoint is updated to a different version and the same session ID is invoked, session data is refreshed, providing a clean context for the new version.

Execute Command: Direct Shell Access Within Sessions

The InvokeAgentRuntimeCommand capability enables agents to execute shell commands directly within their dedicated microVM, bypassing the LLM entirely. This eliminates token costs, latency, and non-determinism from predictable operations like npm test or git push.

Practical Workflow: Multi-Day Development

AWS demonstrates a realistic scenario:

Day 1: Agent downloads a codebase to /mnt/workspace, extracts files, and sets up the development environment. When the session is stopped, the entire workspace persists.

Day 2: Same runtime-session-id is invoked. A new microVM boots and mounts the identical storage. The agent finds all files, dependencies, and build artifacts exactly as left—resuming work immediately without reinitializing.

Architecture Details

Bedrock AgentCore uses two Boto3 service clients:

  • Control plane client (bedrock-agentcore-control): Runtime lifecycle operations
  • Data plane client (bedrock-agentcore): Session operations like InvokeAgentRuntime and InvokeAgentRuntimeCommand

The mount path must follow the pattern /mnt/[folder-name] (e.g., /mnt/workspace or /mnt/data).

What This Means

These features fundamentally change how production agents handle state and deterministic operations. Previously, agents operating over multiple sessions faced a choice: implement complex checkpoint logic with S3 uploads/downloads, keep sessions perpetually alive, or accept repeated initialization overhead. Now, filesystem persistence is built into the runtime—agents naturally maintain state across sessions. Combined with direct shell command execution, teams can build workflows that previously required significant orchestration infrastructure outside the agent runtime. For coding agents specifically, the ability to preserve installed dependencies, git history, and build artifacts across sessions eliminates a major class of wasted compute.

Related Articles

product update

AWS enables fine-tuning of Amazon Nova models for email extraction, achieving 94.77% accuracy with 50% cost reduction

AWS released guidance on fine-tuning Amazon Nova Micro and Nova Lite models for automated email data extraction using SageMaker AI. In collaboration with Parcel Perform, the fine-tuned Nova Micro achieved 94.77% extraction accuracy—a 16.6 percentage point improvement—while reducing inference costs by 50% and latency by 30% compared to previous models.

product update

AWS brings NVIDIA Nemotron and OpenAI GPT OSS models to GovCloud for secure government AI workloads

Amazon Bedrock now supports NVIDIA Nemotron and OpenAI GPT OSS models in AWS GovCloud (US) Regions. The launch includes OpenAI's GPT OSS models (120B and 20B parameters, 128K context) and NVIDIA Nemotron 3 family (9B to 120B parameters, 1M context), providing government agencies FedRAMP High and DoD SRG Level 5-compliant AI inference on U.S. soil.

product update

AWS adds metadata filtering to AgentCore Memory, improving agent retrieval accuracy from 40% to 64%

Amazon has added metadata filtering to its AgentCore Memory service for AI agents. In AWS evaluations across 151 questions, the feature improved overall question-answering accuracy from 40% to 64%, with context-dependent questions jumping from 16% to 69% accuracy. The update allows agents to filter memory retrieval by attributes like priority, department, or time range before semantic search runs.

product update

AWS to Release Anthropic's Claude Fable 5 on Bedrock with Cybersecurity Guardrails

Amazon Web Services announced it will make Anthropic's Claude Fable 5 models available on Bedrock starting tomorrow, featuring guardrails designed to prevent cybersecurity misuse. When guardrails are triggered, the system automatically falls back to Claude Opus 4.8.

Comments

Loading...