Developer Guide

Welcome to the comprehensive developer guide for building AI agents in healthcare and life sciences. This guide will help you choose the right template and deploy your own specialized agents using Amazon Bedrock AgentCore.

Prerequisites

Before getting started, ensure you have:

• AWS Account with access to Amazon Bedrock
• Model Access - Request access to foundation models (e.g., Claude 3.5 Sonnet, Haiku)
• AWS CLI configured with appropriate permissions
• Python 3.10+ installed
• Node.js 18+ and npm (for FAST template)
• Git and GitHub account
• Basic knowledge of AWS services and JSON/YAML configuration

Choosing Your Template

We provide two approaches for building agents, each suited for different use cases:

AgentCore Template

Best for: Backend-focused development, rapid prototyping, local testing

Includes:

• Backend deployment scripts
• Local Streamlit UI
• Gateway, Memory, Cognito setup
• IAM or OAuth authentication options
• Sample tools and observability

Deploy time: ~15-20 minutes

FAST Template

Best for: Production deployments, full-stack applications, end-to-end solutions

Includes:

• Complete CDK infrastructure
• Production React frontend
• Amplify Hosting deployment
• Code Interpreter integration
• Local development support

Deploy time: ~20-30 minutes

---

Option 1: AgentCore Template

Overview

What is the AgentCore Template?

The AgentCore Template provides a streamlined approach to deploying AI agents with:

• Backend Infrastructure: Gateway, Memory, Cognito, and Runtime
• Local Development: Streamlit UI for rapid testing
• Flexible Authentication: Choose between IAM or OAuth
• Custom Tools: Easily add Lambda functions or local Python tools

Architecture:

┌─────────────────────────────────────────────┐
│           Local Streamlit UI                │
│         (port 8501)                         │
└──────────────────┬──────────────────────────┘
                   │
┌──────────────────▼──────────────────────────┐
│      AgentCore Runtime (AWS)                │
│  ┌──────────┐  ┌────────┐  ┌────────────┐  │
│  │ Gateway  │  │ Memory │  │  Cognito   │  │
│  └──────────┘  └────────┘  └────────────┘  │
└─────────────────────────────────────────────┘

When to use:

• Rapid prototyping and experimentation
• Backend-focused development
• Internal tools and demos
• Research and development workflows

Reference: agentcore_template/

Setup

Step-by-Step Deployment

1. Prepare Your Environment

# Clone the repository
git clone https://github.com/aws-samples/amazon-bedrock-agents-healthcare-lifesciences.git
cd amazon-bedrock-agents-healthcare-lifesciences/agentcore_template

# Create virtual environment
python -m venv .venv
source .venv/bin/activate  # On Windows: .venv\Scripts\activate

# Install dependencies
uv pip install -r dev-requirements.txt

2. Customize Your Tools (Optional)

Add your own tools before deployment:

Local Tools (agent_config/tools/sample_tools.py):

from strands.tools import tool

@tool
def my_custom_tool(query: str) -> str:
    """Description of what your tool does."""
    # Your tool logic here
    return result

Gateway Lambda Tools (prerequisite/lambda/):

• Add new Lambda function code
• Update configurations as needed

3. Deploy Infrastructure

# Deploy prerequisites (S3, Lambda, etc.)
chmod +x scripts/prereq.sh
./scripts/prereq.sh

# List SSM parameters for reference
chmod +x scripts/list_ssm_parameters.sh
./scripts/list_ssm_parameters.sh

Note: Use a consistent prefix for all resources (e.g., myapp)

4. Create AgentCore Components

# Create Gateway (connects to Lambda tools)
python scripts/agentcore_gateway.py create --name myapp-gw

# Create Cognito Identity Provider
python scripts/cognito_credentials_provider.py create --name myapp-cp

# Test Gateway
python tests/test_gateway.py --prompt "Hello, can you help me?"

# Create Memory
python scripts/agentcore_memory.py create --name myapp

# Test Memory
python tests/test_memory.py load-prompt "My preferred format is detailed explanations"
python tests/test_memory.py list-memory

5. Deploy Agent Runtime

# Configure runtime
agentcore configure \
  --entrypoint main.py \
  -rf agent/requirements.txt \
  -er arn:aws:iam::<ACCOUNT>:role/<ROLE> \
  --name myapp-agent

When prompted:

• OAuth: Choose ‘yes’ for OAuth or ‘no’ for IAM
• Discovery URL: Use value from /app/myapp/agentcore/cognito_discovery_url
• Client ID: Use value from /app/myapp/agentcore/web_client_id

# Remove old config and launch
rm .agentcore.yaml
agentcore launch

6. Run Local UI

IAM Authentication

# Run Streamlit UI (select agent from dropdown)
streamlit run app.py --server.port 8501

Access at: http://localhost:8501

OAuth Authentication

# Run Streamlit UI with OAuth
streamlit run app_oauth.py --server.port 8501 -- --agent=myapp-agent

You’ll be prompted to authenticate via Cognito.

7. Test Your Agent

Try these queries:

• “Hello, can you help me with information?”
• “What tools do you have available?”
• “Can you remember my preferences?”

Observability

Enable Observability

Amazon Bedrock AgentCore provides built-in observability through CloudWatch:

Setup Steps

1. Enable Transaction Search in CloudWatch:

   • Navigate to CloudWatch Console
   • Follow Enable Transaction Search Guide

2. View Agent Metrics:

   • Filter by agent name and time frame
   • Track latency, token usage, errors
   • Analyze tool invocations

Reference: Build Trustworthy AI Agents with Observability

Cleanup

Clean Up Resources

To avoid ongoing charges, remove all deployed resources:

# Run cleanup script
chmod +x scripts/cleanup.sh
./scripts/cleanup.sh

# Delete individual components
python scripts/cognito_credentials_provider.py delete
python scripts/agentcore_memory.py delete
python scripts/agentcore_gateway.py delete
python scripts/agentcore_agent_runtime.py myapp-agent

# Remove config files
rm .agentcore.yaml
rm .bedrock_agentcore.yaml

---

Option 2: FAST Template (Fullstack Solution)

Overview

What is FAST?

The Fullstack AgentCore Solution Template (FAST) is a production-ready framework for deploying complete AI agent applications with:

• End-to-End Infrastructure: CDK deployment of backend and frontend
• Production React UI: Modern, responsive web interface with authentication
• Amplify Hosting: Automatic frontend deployment with CloudFront CDN
• Code Interpreter: Built-in Python code execution capabilities
• Local Development: Docker Compose for local testing

Architecture:

┌───────────────────────────────────────────────────────┐
│             CloudFront + Amplify                      │
│              (React Frontend)                         │
└────────────────────┬──────────────────────────────────┘
                     │
┌────────────────────▼──────────────────────────────────┐
│            API Gateway + Cognito Auth                 │
└────────────────────┬──────────────────────────────────┘
                     │
┌────────────────────▼──────────────────────────────────┐
│          AgentCore Runtime (Container)                │
│  ┌─────────────┐  ┌──────────┐  ┌─────────────────┐  │
│  │   Gateway   │  │  Memory  │  │ Code Interpreter│  │
│  │  (Lambda)   │  │ (DynamoDB│  │  (Sandboxed)    │  │
│  └─────────────┘  └──────────┘  └─────────────────┘  │
└───────────────────────────────────────────────────────┘

When to use:

• Production deployments
• Customer-facing applications
• Full-stack solutions with frontend
• Scalable, secure applications

Reference:

• FAST Repository
• Example: Terminology Agent

Setup

Step-by-Step Deployment

1. Get Started with FAST

Use Example Agent

Option A: Start with the Terminology Agent example

# Clone the repository
git clone https://github.com/aws-samples/amazon-bedrock-agents-healthcare-lifesciences.git
cd amazon-bedrock-agents-healthcare-lifesciences/agents_catalog/35-Terminology-agent

# Install dependencies
pip install -r requirements-dev.txt

Fork FAST Template

Option B: Fork the official FAST template

# Fork and clone FAST
git clone https://github.com/YOUR-USERNAME/fullstack-solution-template-for-agentcore.git
cd fullstack-solution-template-for-agentcore

2. Configure Your Stack

Edit infra-cdk/config.yaml:

stack_name_base: "my-agent"  # Your stack name
aws_region: "us-west-2"       # Your AWS region
cognito_domain_prefix: "my-agent"  # Must be globally unique

3. Deploy Backend (Creates Cognito)

cd infra-cdk

# Install CDK dependencies
npm install

# Bootstrap CDK (once per account/region)
cdk bootstrap

# Deploy backend stack
cdk deploy

What gets deployed:

• ✅ Cognito User Pool (authentication)
• ✅ AgentCore Runtime (Docker container)
• ✅ AgentCore Gateway (Lambda tools)
• ✅ AgentCore Memory (DynamoDB)
• ✅ API Gateway (REST endpoints)
• ✅ Code Interpreter (sandboxed Python)

Deploy time: ~15-20 minutes

4. Deploy Frontend

cd ..

# Deploy to Amplify Hosting
python scripts/deploy-frontend.py

The script will:

1. Build the React app
2. Upload to S3
3. Configure Amplify Hosting
4. Set up CloudFront CDN

Frontend URL: Check CloudFormation outputs or run:

aws cloudformation describe-stacks --stack-name my-agent \
  --query 'Stacks[0].Outputs[?OutputKey==`FrontendURL`].OutputValue' \
  --output text

5. Create Test User

# Create a test user in Cognito
aws cognito-idp admin-create-user \
  --user-pool-id <USER_POOL_ID> \
  --username testuser \
  --user-attributes Name=email,Value=test@example.com \
  --temporary-password "TempPass123!" \
  --message-action SUPPRESS

# Set permanent password
aws cognito-idp admin-set-user-password \
  --user-pool-id <USER_POOL_ID> \
  --username testuser \
  --password "MySecurePass123!" \
  --permanent

6. Access Your Agent

1. Navigate to the Frontend URL
2. Log in with your test user credentials
3. Start interacting with your agent!

Customization

Customize Your Agent

Update Agent Logic

File: patterns/strands-single-agent/basic_agent.py (or create new file)

from strands import Agent
from strands.tools import tool

# Define your system prompt
SYSTEM_PROMPT = """
You are a specialized agent for [YOUR DOMAIN].

Your capabilities:
- [Capability 1]
- [Capability 2]

Always:
- [Guideline 1]
- [Guideline 2]
"""

# Add custom tools
@tool
def my_domain_tool(query: str) -> str:
    """Description of what this tool does."""
    # Your tool logic
    return result

# Create agent
agent = Agent(
    model="anthropic.claude-3-5-sonnet-20241022-v2:0",
    system_prompt=SYSTEM_PROMPT,
    tools=[my_domain_tool],
)

Update Frontend Branding

File: frontend/src/components/chat/ChatInterface.tsx

Change welcome message and title:

<h2>Your Agent Name</h2>
<p>Your agent description</p>

File: frontend/index.html

Update page title:

<title>Your Agent Name</title>

Add MCP Servers

Add external MCP servers (like OLS for ontologies):

# In your agent file
from mcp import Client

# Connect to MCP server
mcp_client = Client(
    url=os.getenv("MCP_SERVER_URL"),
    auth_token=os.getenv("MCP_AUTH_TOKEN")
)

# Use MCP tools
agent = Agent(
    tools=[mcp_client, my_local_tools],
)

See agents_catalog/35-Terminology-agent/ for complete MCP example.

Update CDK Configuration

File: infra-cdk/lib/backend-stack.ts

Point to your custom agent:

entrypoint: "patterns/strands-single-agent/my_custom_agent.py"

Redeploy:

cd infra-cdk
cdk deploy

Local Development

Local Development with Docker

FAST supports local development while connecting to deployed AWS resources:

Prerequisites

You must deploy the stack first (Cognito, Memory, Gateway require AWS):

cd infra-cdk
cdk deploy

Get Required Values

# Get Memory ID
aws cloudformation describe-stacks --stack-name my-agent \
  --query 'Stacks[0].Outputs[?OutputKey==`MemoryArn`].OutputValue' \
  --output text
# Extract ID from: arn:aws:bedrock-agentcore:region:account:memory/MEMORY_ID

# Set environment variables
export MEMORY_ID=your-memory-id
export STACK_NAME=my-agent
export AWS_DEFAULT_REGION=us-west-2

Run Locally

cd docker
docker-compose up --build

Access:

• Frontend: http://localhost:3000
• Backend: http://localhost:8080

Benefits:

• Fast iteration on agent logic
• No redeployment needed for code changes
• Full integration with AWS services
• Hot reload for frontend

Cleanup

Clean Up Resources

# Delete CloudFormation stack (removes all resources)
cdk destroy

# Or via AWS CLI
aws cloudformation delete-stack --stack-name my-agent

What gets deleted:

• ✅ Frontend (Amplify Hosting, CloudFront, S3)
• ✅ Backend (Lambda, API Gateway, AgentCore Runtime)
• ✅ Cognito User Pool (including users)
• ✅ Memory (DynamoDB tables)
• ✅ Gateway resources

Preserved:

• CloudWatch Logs (for audit)
• ECR images (for rollback)

To delete logs and images:

# Delete log groups
aws logs delete-log-group --log-group-name /aws/lambda/my-agent-*

# Delete ECR repository
aws ecr delete-repository --repository-name my-agent-runtime --force

---

Agent Development Best Practices

System Prompt Design

Craft effective system prompts for HCLS agents:

SYSTEM_PROMPT = """
You are a [DOMAIN] expert agent specializing in [SPECIFIC AREA].

## Core Capabilities
- [Capability 1]: [Description]
- [Capability 2]: [Description]
- [Capability 3]: [Description]

## Domain Expertise
You have deep knowledge of:
- [Knowledge area 1]
- [Knowledge area 2]
- [Knowledge area 3]

## Response Guidelines
ALWAYS:
- Cite authoritative sources
- Clarify ambiguities before responding
- Use domain-specific terminology correctly
- Provide confidence levels when uncertain

NEVER:
- Provide medical advice or diagnosis
- Make claims about insurance or billing
- Share patient-identifiable information
- Guarantee outcomes or results

## Tool Usage
- Use [tool_name] when [condition]
- Prefer [authoritative_source] over [secondary_source]
- Always indicate data source in responses
"""

Tool Development

Best Practices:

• ✅ Single Responsibility: One tool, one clear purpose
• ✅ Descriptive Docstrings: Help the LLM understand when to use
• ✅ Type Hints: Enable better validation and documentation
• ✅ Error Handling: Return meaningful error messages
• ✅ Logging: Track usage and debug issues

Example:

from strands.tools import tool
from typing import Optional

@tool
def search_medical_database(
    query: str,
    database: str = "pubmed",
    max_results: int = 10
) -> dict:
    """
    Search medical literature databases for research articles.

    Use this tool when the user asks about:
    - Recent research findings
    - Clinical trial data
    - Medical literature references

    Args:
        query: Search query using medical terminology
        database: Which database to search (pubmed, clinicaltrials, etc.)
        max_results: Maximum number of results to return

    Returns:
        Dictionary with search results and metadata
    """
    try:
        # Implementation
        results = perform_search(query, database, max_results)
        return {
            "success": True,
            "results": results,
            "source": database,
            "query": query
        }
    except Exception as e:
        return {
            "success": False,
            "error": str(e),
            "query": query
        }

Security Considerations

Authentication:

• ✅ Use Cognito for user authentication
• ✅ Implement M2M auth for service-to-service
• ✅ Never hardcode credentials
• ✅ Rotate secrets regularly

Data Protection:

• ✅ Use environment variables for sensitive data
• ✅ Enable encryption at rest (DynamoDB, S3)
• ✅ Use VPC endpoints for private connectivity
• ✅ Implement least-privilege IAM roles

HIPAA Compliance (if applicable):

• ✅ Sign Business Associate Agreement (BAA) with AWS
• ✅ Use HIPAA-eligible services only
• ✅ Enable CloudTrail logging
• ✅ Implement audit trails for PHI access

Testing Strategy

Unit Tests:

test_tools.py

def test_search_medical_database():
    result = search_medical_database("diabetes treatment")
    assert result["success"] == True
    assert len(result["results"]) > 0

Integration Tests:

test_agent.py

def test_agent_response():
    agent = create_agent()
    response = agent.invoke("What is the ICD-10 code for diabetes?")
    assert "E11" in response

End-to-End Tests:

# Use test scripts
python test-scripts/test-agent.py --test-suite

---

Contributing Your Agent

Once you’ve built and tested your agent, contribute it to the catalog:

Contribution Checklist

• README.md: Clear description, use cases, setup instructions
• Sample Queries: 5-10 example interactions
• Architecture Diagram: Visual representation
• Documentation: Deployment guide, troubleshooting
• Tests: Automated test suite
• License: Apache-2.0 or compatible
• Public Data: Only use appropriately licensed data sources

Submission Process

1. Fork the repository:

   git clone https://github.com/YOUR-USERNAME/amazon-bedrock-agents-healthcare-lifesciences.git
   cd amazon-bedrock-agents-healthcare-lifesciences

2. Create your agent directory:

   mkdir -p agents_catalog/XX-YourAgentName
   cd agents_catalog/XX-YourAgentName

3. Add required files:

   XX-YourAgentName/
   ├── README.md
   ├── architecture.png
   ├── requirements-dev.txt
   ├── patterns/
   │   └── strands-single-agent/
   │       └── your_agent.py
   ├── test-scripts/
   │   └── test-agent.py
   └── docs/
       └── DEPLOYMENT.md

4. Create pull request:

   git checkout -b add-your-agent-name
   git add .
   git commit -m "Add: YourAgentName for [use case]"
   git push origin add-your-agent-name

5. Fill out PR template with:

   • Agent description and use cases
   • Key capabilities
   • Sample queries
   • Testing performed
   • Screenshots/demo video (optional)

---

Next Steps

Learn More

• Amazon Bedrock Documentation
• AgentCore Developer Guide
• FAST Template Documentation
• Sample Agents Catalog

Get Help

• GitHub Issues
• AWS Support
• Community Forums

Example Agents

Explore production-ready examples:

• Terminology Agent - Medical terminology standardization with 200+ ontologies
• Research Agent - Biomedical literature search and analysis

---

Ready to build? Choose your template and start deploying your AI agent today! 🚀