Luciano Mammino PRO
Cloud developer, entrepreneur, fighter, butterfly maker! #nodejs #javascript - Author of https://www.nodejsdesignpatterns.com , Founder of https://fullstackbulletin.com
Serverless Podcast Transcription with Durable Lambda Functions, ECS Managed Instances, and Bedrock
Luciano Mammino (@loige)
AWS UG Dublin
2026-03-24
Theory
Most automatic audio transcriptions simply suck... ๐คทโโ๏ธ
are not great!
Proof
CloudWatch Logs Insights
Proof
CI/CD
hard coded
Proof
Luciano
Eoin ๐ค
AWS Bites
Proof
logs ๐ถ๐ชต
SAD REALITY
You have to spend a lot of time manually editing transcripts if you want decent results! ๐ซ
Or maybe not...
๐ I'm Luciano (๐ฎ๐น๐๐๐ค)
๐จโ๐ป Senior Architect @ fourTheorem
๐ Co-Author of Node.js Design Patterns ๐
Let's connect!
$ ~ whoami
former
๐ I'm Luciano (๐ฎ๐น๐๐๐ค)
๐จโ๐ป Senior Architect @ fourTheorem
๐ Co-Author of Crafting Lambda Functions in Rust ๐
Let's connect!
$ ~ whoami
Early-access available at
25% discount! ๐ค
former
Always re-imagining
We are a pioneering technology consultancy focused on AWS and serverless
โ๏ธ Reach out to us at hello@fourTheorem.com
๐ We are always looking for talent: fth.link/careers
We can help with:
Cloud Migrations
Training & Cloud enablement
Building high-performance serverless applications
Cutting cloud costs
So...
Most automatic audio transcriptions simply suck!
So...
We decided to build our own!
*
* I am sure there are great options out there, but we do like to build stuff!
So...
~3 years ago Podwhisperer v1 was born!
So...
~3 years ago Podwhisperer v1 was born!
Podwhisperer goals
- โคต๏ธ Drop an audio file in S3
- ๐ช Magic happens (wait a bit)
- ๐ณ๏ธ Get a clean transcript file in S3
- ... actually two:
- A VTT for YouTube
- A JSON for our website
Full readable transcript! ๐ฅฑ
Search for any word we have ever said! ๐ค
Podwhisperer v1
(very) high-level architecture
- S3 for file storage
- Step functions for orchestrations
- Transcribe + Whisper on Sage Maker
- Lambda for custom processing logic
ใ
Why 2 separate transcriptions?
(Whisper + Transcribe)
โ Probably Nobody
Whisper vs Transcribe
โ
High quality transcriptions
(low error rate)
โ Average quality transcriptions
(mid error rate)
โ No diarization
โ Diarization
โ Not managed
โ Fully managed service
Whisper + Transcribe =
a bit of PITA... but best of both worlds!
2023 edition
Short aside... What is diarization?
โ transcript without diarization
{
"segments": [
{
"start": "1.234",
"end": "5.432",
"text": "Hello and welcome to AWS Bites"
},
{
"start": "7.734",
"end": "14.322",
"text": "Here's Luciano"
},
{
"start": "15.934",
"end": "19.322",
"text": "...and here's Eoin"
}
]
}Short aside... What is diarization?
โ transcript with diarization
{
"segments": [
{
"start": "1.234",
"end": "5.432",
"text": "Hello and welcome to AWS Bites",
"speaker": "SPEAKER_00"
},
{
"start": "7.734",
"end": "14.322",
"text": "Here's Luciano",
"speaker": "SPEAKER_00"
},
{
"start": "15.934",
"end": "19.322",
"text": "...and here's Eoin",
"speaker": "SPEAKER_01"
}
]
}So...
we built Podwhisperer
it worked...
... then a lot of stuff happened!
Cool new stuff from the last 2-3 years!
-
WhisperX (github.com/m-bain/whisperX)
Runs on GPU, adds diarization + word-level sync in one model! - ECS Managed Instances
- Lambda Durable Functions
- LLMs and Bedrock
Let's rebuild ALL THE THINGS!
Bright new ideas! ๐ก
WhisperX can do everything we need:
- ๐ High quality transcripts
- ๐ฏโโ๏ธ Diarization
- โฑ๏ธ Word-level timings!
- ๐ฅ And it's much faster when it runs on GPU!
Short aside... What are word-level timings?
{
"segments": [
{
"start": "1.234",
"end": "5.432",
"text": "Hello and welcome to AWS Bites",
"speaker": "SPEAKER_00",
"words": [
{
"start": "1.234",
"end": "2.015",
"word": "Hello"
},
{
"start": "2.432",
"end": "3.012",
"word": "and"
},
{
"start": "3.343",
"end": "4.432",
"word": "welcome"
},
{
"start": "4.598",
"end": "4.732",
"word": "to"
},
{
"start": "4.812",
"end": "4.955",
"word": "AWS"
},
{
"start": "5.011",
"end": "5.432",
"word": "Bites"
}
]
}
]
}Bright new ideas! ๐ก
WhisperX does it all, so we don't need Transcribe anymore! But...
- It's not a managed service, we need to host it
- Possibly somewhere with a GPU
- Possibly in serverless fashion
(only allocate compute instances when there's stuff to do and save precious money! ๐ฐ)
Bright new ideas! ๐ก
We can make the WhisperX transcripts even better with post-processing!
- Use LLMs to correct context-specific nuances and transcription mistakes
- Use LLMs to automatically identify speaker names (not just labels!)
- Use word-level timings to split long segments into smaller, more readable ones!
High level flow
Refinement steps
- Fill timing gaps
- Replacement rules (e.g. "Owen" -> "Eoin")
- LLM refinement and speaker names detection
- Segments normalization
๐๏ธ PodWhisperer v2 - Architecture on AWS
๐๏ธ PodWhisperer v2 - Architecture on AWS
You are here
๐๏ธ PodWhisperer v2 - Architecture on AWS
You are here
๐๏ธ PodWhisperer v2 - Architecture on AWS
You are here
Let's talk about
Lambda Durable Functions
The long version
Durable Lambda Functions in a Nutshell ๐ฅ
-
Still Lambda: same runtime, same scaling model
-
โTurn onโ durable mode (flag) + install SDK
-
New superpowers: checkpoint, suspend, resume
-
Skip work already completed
Example use cases
-
Order processing with restaurant confirmation + timeout
-
Tenant onboarding (multi-step provisioning + reviews)
-
Payment retries (retry days later)
-
Media processing (skip expensive rework)
In practice
-
Stop thinking โone invocationโ
-
Start thinking โworkflow made of stepsโ
-
Steps are explicit, named, atomic units of work
In practice
-
Write business logic in steps:
step1 โ step2 โ step3 -
Each step returns a result
-
Result becomes durable state (checkpointed)
FRIGGIN' CODE! ๐ฉ
import { DurableContext, withDurableExecution } from '@aws/durable-execution-sdk-js'
import { EventBridgeEvent } from 'aws-lambda'
type S3ObjectCreatedDetail = {
bucket: { name: string }
object: { key: string; size: number; etag: string }
}
type S3EventBridgeEvent = EventBridgeEvent<'Object Created',S3ObjectCreatedDetail>
// INIT: here is where you want to initialize clients, read secrets, etc!
const handler = async (event: S3EventBridgeEvent, context: DurableContext) => {
// ... biz logic here!
}
export const lambdaHandler = withDurableExecution(handler)const handler = async (event: S3EventBridgeEvent, context: DurableContext) => {
const key = decodeURIComponent(event.detail.object.key.replace(/\+/g, ' '))
const rawResult = await context.waitForCallback( // FIRST STEP!
`transcribe-${key}`,
async (callback_id, innerCtx) => {
innerCtx.logger.debug('Sending message to SQS with callback')
const message = { s3_key: key, callback_id }
const sqs = new SQSClient()
await sqs.send(
new SendMessageCommand({
QueueUrl: QUEUE_URL,
MessageBody: JSON.stringify(message),
}),
)
innerCtx.logger.info('Message sent successfully to SQS')
},
{ timeout: { minutes: 60 } },
)
// You'll never reach this line in this invocation
console.log('๐ซ ')
}You are here
You are here
You are here
โ๏ธ Suspended
You are here
โ๏ธ Suspended
You are here
โ๏ธ Suspended
โก๏ธ Resume
You are here
const handler = async (event: S3EventBridgeEvent, context: DurableContext) => {
// ... wait for callback stuff
// Fill timing gaps โ fills missing word timestamps before any other processing
await context.step('fill-timing-gaps', async () => {
// ...
})
// Replacement rules
await context.step('replacement-rules', async () => {
// ...
})
// LLM-based refinement
await context.step('llm-refinement', async () => {
// ...
})
// Segments Normalization
await context.step('segments-normalization', async () => {
// ...
})
// Generate VTT, SRT, and JSON caption files in parallel
const { captionKeys, pipelineCompletedAt } = await context.step(
'generate-captions',
async () => {
// ...
}
)
}Execution history + Checkpointing
-
The Lambda service stores execution history
-
After each step: persist return value
-
Checkpoints are โsafe pointsโ in the workflow
VERY IMPORTANT TO UNDERSTAND ๐ง
-
Resume always re-runs your handler from line 1
-
Completed steps are not re-executed
-
Step results are replayed (reloaded) from persisted state
ALSO... VERY IMPORTANT TO UNDERSTAND ๐ค
-
Code outside steps is the orchestrator path
-
Orchestrator code re-runs on every resume
-
Non-determinism here creates subtle bugs
BTW... What the heck was going on here?! ๐ฅธ
Let's talk about
ECS Managed Instances
The long version
So... we need a way to run a container for WhisperX
-
On demand... only when there are jobs in the queue
-
Totally serverless: scales to 0 with no jobs
-
We don't want to manage servers, seriously!
Can we just use Fargate?!
GPU!
Fargate
50 Shades of ECS ๐โค๏ธโ๐ฅ
Serverlessness scaleโข๏ธ
MOAR Serverless ๐
Less Serverless ๐
ECS on EC2
AWS hides the machines
Great default for most workloads
Limits: GPUs, Network, Storage
You have to provision EC2 instances to run container...
You have all the freedom, but also all the responsibility!
ECS MI
EC2-like flexibility, without management.
You specify requirements, AWS chooses the host.
You donโt manage the OS!
What do we need to know to make it work?! ๐
-
Cluster: logical home for workloads
-
Task definition: blueprint
-
Task: running instance of that blueprint
-
Service: keeps tasks running, deployment + autoscaling
-
๐ Capacity provider: where compute comes from
-
๐ Attributes: requirements filter for underlying instances
CDK CODE! ๐ฅบ
export class MyStack extends cdk.Stack {
constructor(scope: Construct, id: string, props?: MyStackProps) {
super(scope, id, props)
// ...
// Allow AWS to manage your EC2 instances
// ...and run ECS containers on them
const instanceProfileRole = new iam.Role(
this,
'ManagedInstancesInstanceProfileRole',
{
assumedBy: new iam.ServicePrincipal('ec2.amazonaws.com'),
},
)
instanceProfileRole.addManagedPolicy(
iam.ManagedPolicy.fromAwsManagedPolicyName(
'AmazonECSInstanceRolePolicyForManagedInstances',
),
)
const infrastructureRole = new iam.Role(
this,
'ManagedInstancesInfrastructureRole',
{
assumedBy: new iam.ServicePrincipal('ecs.amazonaws.com'),
managedPolicies: [
iam.ManagedPolicy.fromAwsManagedPolicyName(
'AmazonECSInfrastructureRolePolicyForManagedInstances',
),
],
},
)
infrastructureRole.addToPolicy(
new iam.PolicyStatement({
actions: ['iam:PassRole'],
resources: [instanceProfileRole.roleArn],
}),
)
const instanceProfile = new iam.InstanceProfile(
this,
'ManagedInstancesInstanceProfile',
{
role: instanceProfileRole,
},
)
// ...
}
}export class MyStack extends cdk.Stack {
constructor(scope: Construct, id: string, props?: MyStackProps) {
super(scope, id, props)
// ...
// Create the cluster
const cluster = new ecs.Cluster(this, 'MyEcsMiCluster', {
clusterName: 'MyEcsMiCluster'
})
// ...
}
}export class MyStack extends cdk.Stack {
constructor(scope: Construct, id: string, props?: MyStackProps) {
super(scope, id, props)
// ...
// Create capacity provider
const capacityProvider = new ecs.ManagedInstancesCapacityProvider(
this,
'PodwhispererCapacityProvider',
{
subnets: cluster.vpc.privateSubnets,
infrastructureRole,
ec2InstanceProfile: instanceProfile,
securityGroups: [allowOutboundSg],
instanceRequirements: {
vCpuCountMin: 4,
vCpuCountMax: 16, // Allow various GPU instance types from 4 to 16 vCPUs
memoryMin: cdk.Size.gibibytes(16), // Minimum 16 GB (8 GB task + ~8 GB OS overhead)
cpuManufacturers: [
ec2.CpuManufacturer.INTEL,
ec2.CpuManufacturer.AMD,
],
instanceGenerations: [ec2.InstanceGeneration.CURRENT],
burstablePerformance: ec2.BurstablePerformance.EXCLUDED,
bareMetal: ec2.BareMetal.EXCLUDED,
// GPU requirement: single NVIDIA GPU
// Allows: g4dn.xlarge, g4dn.2xlarge, g5.xlarge, g5.2xlarge, p3.2xlarge, etc.
acceleratorManufacturers: [ec2.AcceleratorManufacturer.NVIDIA],
acceleratorTypes: [ec2.AcceleratorType.GPU],
acceleratorCountMin: 1,
acceleratorCountMax: 1, // No multi-GPU instances
},
},
)
// Adds the capacity provider to our cluster
cluster.addManagedInstancesCapacityProvider(capacityProvider)
// ...
}
}export class MyStack extends cdk.Stack {
constructor(scope: Construct, id: string, props?: MyStackProps) {
super(scope, id, props)
// ...
// Create task definition
const ecsTaskDefinition = new ecs.TaskDefinition(
this,
'PodwhispererTaskDef',
{
compatibility: ecs.Compatibility.MANAGED_INSTANCES,
cpu: '4096',
memoryMiB: '8192',
runtimePlatform: { cpuArchitecture: ecs.CpuArchitecture.X86_64 },
networkMode: ecs.NetworkMode.AWS_VPC,
},
)
ecsTaskDefinition.addContainer('worker', {
image,
gpuCount: 1, // <- IMPORTANT TO EXPOSE GPU TO THE CONTAINER
})
// ...
}
}export class MyStack extends cdk.Stack {
constructor(scope: Construct, id: string, props?: MyStackProps) {
super(scope, id, props)
// ...
// Create service
const service = new ecs.FargateService(this, 'PodwhispererService', {
cluster,
taskDefinition: ecsTaskDefinition,
desiredCount: 0, // Start at 0, scale up based on queue depth
minHealthyPercent: 0, // Allow tasks to be stopped during deployments
enableExecuteCommand: true,
capacityProviderStrategies: [
{
capacityProvider: capacityProvider.capacityProviderName,
weight: 1,
},
],
})
// ...
}
}export class MyStack extends cdk.Stack {
constructor(scope: Construct, id: string, props?: MyStackProps) {
super(scope, id, props)
// ...
// Auto-scaling: scale to zero when queue is empty, scale to 1 when messages arrive
// Simple binary scaling: 0 messages = 0 tasks, 1+ messages = 1 task
const scaling = service.autoScaleTaskCount({
minCapacity: 0, // Scale to zero when idle = no cost
maxCapacity: 1, // Only allow 1 concurrent task
})
scaling.scaleOnMetric('QueueDepthScaling', {
metric: queue.metricApproximateNumberOfMessagesVisible(),
scalingSteps: [
{ upper: 0, change: -1 }, // Scale down to 0 when queue is empty
{ lower: 1, change: +1 }, // 1+ messages: scale up to 1 task
],
adjustmentType: appscaling.AdjustmentType.CHANGE_IN_CAPACITY,
cooldown: cdk.Duration.seconds(60),
})
// ...
}
}
What happens at the container level?!
-
When a task starts it polls the queue
-
When a message is received, it contains
-
the S3 path of the audio file
-
the Lambda callback to call on completion
-
-
The file is downloaded into the container instance
-
WhisperX runs
-
Results are saved in S3
-
The Durable Function callback is invoked
How do we scale to 0?
-
When the container does 3 empty polls consecutively it exits
-
If there are no containers running AWS deprovisions the EC2 managed instances!
Do you need a ready-made template using CDK? ๐ค
You are here
You are here
How do we use Bedrock to improve our transcripts?
The long version
const REFINEMENT_PROMPT_TEMPLATE = `
You are a transcript editor. Your task is to fix ONLY obvious transcription errors - words that were clearly misheard or misspelled by the speech-to-text system.
## STRICT RULES - Read carefully
**DO correct:**
- Technical terms and proper nouns that were phonetically misheard (e.g., "aye phone" โ "iPhone", "doctor smith" โ "Dr. Smith")
- Words split incorrectly by the transcriber (e.g., "face book" โ "Facebook", "new york" โ "New York")
- Obvious homophones that are wrong in context (e.g., "there" vs "their" when clearly wrong)
- Duplicated words from transcription errors (e.g., "the the" โ "the")
**DO NOT:**
- Rephrase or reword sentences
- Change sentence structure
- Add words that weren't spoken
- Remove words unless they are duplicated transcription errors
- "Improve" grammar or style
- Change filler words (um, uh, like) - leave them as-is
- Make subjective changes
**When in doubt, leave it unchanged.** The goal is to fix machine transcription errors, not to edit the speakers' words.
## Examples of GOOD vs BAD corrections
**GOOD corrections** (these ARE transcription errors - make these fixes):
- "sage maker" โ "SageMaker" (split technical term)
- "lamb da" โ "Lambda" (split word)
- "the the function" โ "the function" (duplicate word)
- "new york" โ "New York" (proper noun)
- "aye phone" โ "iPhone" (phonetically misheard)
**BAD corrections** (do NOT make these changes):
- "So default in Lambda, that would be..." โ "So you can have up to..." (complete rewrite - WRONG)
- "I think we should probably consider" โ "We should consider" (removing hedging - WRONG)
- "um so basically what happens" โ "what happens" (removing fillers - WRONG)
- "it's like really fast" โ "it's very fast" (style improvement - WRONG)
- "I think this approach pushes you" โ "This approach pushes you" (removing speaker's voice - WRONG)
**Rule of thumb:** If more than 2-3 words need changing, it's probably NOT a transcription error. Leave it unchanged.
{{ADDITIONAL_CONTEXT}}
## Speaker Identification
If additional context is provided above, use any information about speakers (names, roles, or speaking patterns) to identify them. Otherwise, keep the original SPEAKER_XX labels for unknown speakers.
## Input format
Plain text lines with index and speaker prefix:
\`\`\`
[0] [SPEAKER_00] Hello and welcome to the show.
[1] [SPEAKER_01] Thanks for having me.
\`\`\`
## Output format
\`\`\`json
{
"identifiedSpeakers": {
"SPEAKER_00": "Name or SPEAKER_00 if unknown",
"SPEAKER_01": "Name or SPEAKER_01 if unknown"
},
"updates": [
{ "idx": 1, "text": "Corrected text here." }
]
}
\`\`\`
Only include updates for lines with genuine transcription errors. Most lines should NOT need changes. Do not report lines with no changes.
## Transcript to analyze
{{TRANSCRIPT}}
`Challenges when dealing with LLMs
-
You need to be very specific to get more predictable results
-
You need to be very explicit about input/output formats
-
Validate the output before using it!
Use Structured Output!
Getting reliable, machine-readable JSON from LLMs for your production workflows
All the code is FREE and open source! โค๏ธ
Use it, fork it, contribute back!
Go raibh maith agaibh! ๐ฅฐ
AWS UG Dublin
2026-03-24
Serverless Podcast Transcription with Durable Lambda Functions, ECS Managed Instances, and Bedrock
By Luciano Mammino
Serverless Podcast Transcription with Durable Lambda Functions, ECS Managed Instances, and Bedrock
Luciano Mammino co hosts AWS Bites with Eoin Shanaghy. The show has passed 150 episodes and, as a side project alongside a full time job, the production workflow has to be efficient. A few years ago Luciano and Eoin built an automated system to transcribe each episode and generate subtitles for YouTube and the website. That system became Podwhisperer, an open source pipeline that anyone can deploy in their own AWS account to automate podcast transcription. Three years is a long time in the AWS world. Better speech tooling showed up, new ways to run GPU workloads became practical, and durable orchestration in Lambda showed up as a great option to build workflows programmatically. So the project was rebuilt as Podwhisperer v2: a serverless transcription pipeline optimized for podcasts, with GPU accelerated transcription, speaker diarization, and an optional refinement step powered by Amazon Bedrock. v2 also produces captions in VTT, SRT, and JSON, including word level timing, so the output can be used directly across platforms without extra manual work. This talk is a practical case study of the v2 architecture and the trade offs behind it, but it is also designed to teach the foundations behind the building blocks that make it work. Luciano will introduce Lambda Durable Functions and explain how checkpointing and replay enable long running workflows to survive Lambda timeouts.
