What happened
Announced June 17 at AWS Summit New York, AWS Continuum is a family of AI security agents covering the full vulnerability lifecycle: discovery (ingests existing backlogs + independent scans), contextual prioritization using an environment knowledge graph, sandboxed exploit validation to eliminate false positives, and automated remediation with blast-radius analysis. New capabilities include Continuum Threat Modeling (STRIDE models from code/design docs) and Continuum Code Scanning, both in preview. The system graduates from human-in-the-loop 'learn mode' to automated 'enforce mode' and is model-agnostic across frontier AI. AWS cited a 4.5× median improvement in code-to-production speed at Amazon's own retail org. Available via gated preview.
Why it matters
Brings AWS directly into competition with Microsoft MDASH and Google CodeMender as a hyperscaler-native agentic vulnerability remediation platform — the first to integrate pentest, code scan, threat modeling, and remediation into one continuous agent loop. Organizations already on AWS can adopt without new vendor relationships, and the graduated trust model addresses enterprise risk appetite for autonomous remediation.
Applicability
AWS customers with large vulnerability backlogs and DevSecOps teams; security architects evaluating agentic remediation platforms should request gated preview access now.