AWS-native incident investigation PoC

I open-sourced aws-incident-investigator - an AWS-native incident investigation PoC built around one question: How can we use AI in incident analysis without turning the system into a black box? aws-incident-investigator demonstrates how to build a credible, cost-aware, deterministic-first approach to AI-assisted root-cause analysis. The flow is intentionally deterministic-first: An operator triggers an investigation with a saved incident context and time window. Step Functions orchestrates scoped evidence collection (metrics, logs, traces) in parallel. A deterministic hypothesis builder ranks candidate root causes from the combined evidence. Amazon Bedrock evaluates the shortlisted hypotheses as a bounded AI advisory layer - evaluate competing hypotheses, add plausibility, identify missing evidence, and suggest next investigative actions. A final report is assembled and rendered in the UI. Using AI for everything is expensive, can be slow, and is often hard to explain and audit. This