<?xml version="1.0" encoding="UTF-8"?>
<rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom" xmlns:dc="http://purl.org/dc/elements/1.1/">
  <channel>
    <title>DEV Community: SunsetSignal</title>
    <description>The latest articles on DEV Community by SunsetSignal (@sunsetsignal).</description>
    <link>https://dev.to/sunsetsignal</link>
    <image>
      <url>https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.us-east-2.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3998087%2Fa49fb0c4-eb72-4129-91ce-181c0e8daac1.png</url>
      <title>DEV Community: SunsetSignal</title>
      <link>https://dev.to/sunsetsignal</link>
    </image>
    <atom:link rel="self" type="application/rss+xml" href="https://dev.to/feed/sunsetsignal"/>
    <language>en</language>
    <item>
      <title>Amazon Linux 2 reaches EOL on June 30 — here's what breaks, and how to stay compliant</title>
      <dc:creator>SunsetSignal</dc:creator>
      <pubDate>Thu, 25 Jun 2026 06:39:16 +0000</pubDate>
      <link>https://dev.to/sunsetsignal/amazon-linux-2-reaches-eol-on-june-30-heres-what-breaks-and-how-to-stay-compliant-47bj</link>
      <guid>https://dev.to/sunsetsignal/amazon-linux-2-reaches-eol-on-june-30-heres-what-breaks-and-how-to-stay-compliant-47bj</guid>
      <description>&lt;p&gt;Amazon Linux 2 (AL2) reaches end-of-life on June 30, 2026. If you're still on it, here's what actually breaks — and the part that turns it from tech debt into an audit problem.&lt;/p&gt;

&lt;h2&gt;
  
  
  Where it bites
&lt;/h2&gt;

&lt;p&gt;&lt;strong&gt;EKS.&lt;/strong&gt; AL2-based EKS AMIs stop receiving kernel updates. Move your node groups to AL2023 or Bottlerocket before the cutoff.&lt;/p&gt;

&lt;p&gt;&lt;strong&gt;Lambda.&lt;/strong&gt; Runtimes and base images still on AL2 — Java 8 on AL2, &lt;code&gt;provided.al2&lt;/code&gt;, older Python — lose patching. Move to the AL2023-based runtimes AWS is shipping.&lt;/p&gt;

&lt;h2&gt;
  
  
  Why it's a compliance problem, not just tech debt
&lt;/h2&gt;

&lt;p&gt;Running an unsupported OS is a direct finding in SOC 2 and ISO 27001 audits — supported software is an explicit requirement. PCI DSS 4.0 goes further and requires an end-of-life management program. So an unpatched AL2 box isn't just risky; it can cost you a certification, and with it customer contracts.&lt;/p&gt;

&lt;h2&gt;
  
  
  A 3-step check before it bites
&lt;/h2&gt;

&lt;ol&gt;
&lt;li&gt;
&lt;strong&gt;Inventory by runtime across ALL accounts and regions.&lt;/strong&gt; A single-region CLI query misses things — this is where teams get caught.&lt;/li&gt;
&lt;li&gt;
&lt;strong&gt;Test on the AL2023 target in staging.&lt;/strong&gt; Most breakages are in native dependencies, not your code.&lt;/li&gt;
&lt;li&gt;
&lt;strong&gt;Capture the evidence.&lt;/strong&gt; Note the migration in your compliance documentation so it doesn't surprise you at audit time.&lt;/li&gt;
&lt;/ol&gt;

&lt;h2&gt;
  
  
  The bigger pattern
&lt;/h2&gt;

&lt;p&gt;AL2 is one of dozens of these. The notices are scattered across changelogs and lifecycle pages, one per provider — so most teams find out during an audit or after an outage, not before.&lt;/p&gt;

&lt;p&gt;That's exactly why I started &lt;strong&gt;SunsetSignal&lt;/strong&gt;: a free, 5-minute weekly brief on the deprecations, EOLs and breaking changes hitting serverless &amp;amp; AWS teams — curated, prioritized, with what to do and why it matters for compliance. If that's useful: &lt;a href="https://sunsetsignal.com" rel="noopener noreferrer"&gt;https://sunsetsignal.com&lt;/a&gt;&lt;/p&gt;

&lt;p&gt;What's the last deprecation that caught your team off guard?&lt;/p&gt;

</description>
      <category>aws</category>
      <category>devops</category>
      <category>cloud</category>
      <category>security</category>
    </item>
  </channel>
</rss>
