Deploy your first Lambda. Get an email from your duck. Reply to it.
By the end of this part, you'll have a duck that emails you a question every morning, listens when you reply, and sends back an acknowledgment. A complete loop: trigger, think, act.
But it won't remember you. Every morning is a first date. The duck will ask you what's on your mind like it's never met you, because it hasn't — not really. Its memory resets with each new invocation. That's fine. That's where we start.
You're going to deploy two Lambda functions, wire them to a cron schedule and an S3 event, and give Claude a system prompt that turns it into something with a personality. The infrastructure sounds like a lot, but SST collapses most of it into a single config file.
Ember built her first agent with a cron job and a CSV file. You're building yours with Lambda and Bedrock — but the shape is the same: trigger → think → act.
mkdir pip-agent && cd pip-agentSST (Ion) is an infrastructure-as-code framework that makes deploying to AWS feel like writing application code. Check sst.dev for the latest install instructions — the CLI evolves fast.
npx sst@latest initFollow the prompts. Pick aws as the provider. This creates a sst.config.ts and a tsconfig.json.
Replace the generated package.json with this. It pulls in the AWS SDK clients we need — Bedrock for Claude, SES for email, S3 for reading inbound mail, and DynamoDB (we'll need it in Part 2, but installing it now saves a trip back).
{
"name": "pip-agent",
"version": "1.0.0",
"private": true,
"type": "module",
"scripts": {
"dev": "sst dev",
"deploy": "sst deploy --stage prod",
"remove": "sst remove --stage prod"
},
"dependencies": {
"@aws-sdk/client-bedrock-runtime": "^3.700.0",
"@aws-sdk/client-dynamodb": "^3.700.0",
"@aws-sdk/lib-dynamodb": "^3.700.0",
"@aws-sdk/client-ses": "^3.700.0",
"@aws-sdk/client-s3": "^3.700.0",
"mailparser": "^3.7.0"
},
"devDependencies": {
"sst": "^3.0.0",
"typescript": "^5.5.0",
"@types/aws-lambda": "^8.10.0",
"@types/mailparser": "^3.4.0",
"@types/node": "^22.0.0"
}
}npm installmkdir -p src/libThis is where all your Lambda handlers and helper modules will live.
SST lets you define your entire AWS architecture in a single TypeScript file. We'll build sst.config.ts piece by piece, then show the complete file at the end.
Start with the shell. This names your app and sets the region. We're using us-east-1 because SES inbound email and Bedrock both work there, and keeping everything in one region avoids a lot of confusion.
export default $config({
app(input) {
return {
name: "pip-agent",
removal: input?.stage === "prod" ? "retain" : "remove",
home: "aws",
providers: {
aws: {
region: "us-east-1",
},
},
};
},
async run() {
// We'll fill this in next
},
});The removal setting tells SST what to do when you tear down a stage. In dev, remove everything. In prod, retain resources so you don't accidentally delete your data.
Inside the run() function, add two secrets. UserEmail is where Pip sends messages. DuckEmail is the SES-backed address Pip sends from and receives replies on.
// --- Human inbox + duck reply address ---
const userEmail = new sst.Secret("UserEmail");
const duckEmail = new sst.Secret("DuckEmail");When someone replies to the duck's email, SES deposits the raw message into this bucket. Your Lambda will read it from there.
// --- S3 bucket for inbound email ---
const emailBucket = new sst.aws.Bucket("EmailBucket");We won't use this until Part 2, but let's set it up now so we don't have to redeploy just for a table later. It'll store memories and question history.
// --- DynamoDB table for memories + question history ---
const table = new sst.aws.Dynamo("MemoryTable", {
fields: {
pk: "string",
sk: "string",
},
primaryIndex: { hashKey: "pk", rangeKey: "sk" },
});This is the Lambda that generates the daily question. It needs permission to call Bedrock (for Claude) and SES (to send email).
// --- Ask Lambda: generates daily question, sends email ---
const askFn = new sst.aws.Function("AskFn", {
handler: "src/ask.handler",
timeout: "30 seconds",
environment: {
TABLE_NAME: table.name,
USER_EMAIL: userEmail.value,
DUCK_EMAIL: duckEmail.value,
},
permissions: [
{
actions: ["bedrock:InvokeModel"],
resources: ["*"],
},
{
actions: ["ses:SendEmail"],
resources: ["*"],
},
],
link: [table],
});The link: [table] gives the function IAM permissions to read/write DynamoDB. We also pass in both email addresses: the human inbox and the duck's SES-backed reply address.
An agent without a schedule is just a function. This cron expression fires at 7:00 AM UTC every day.
// --- Schedule: 7am UTC daily ---
new sst.aws.Cron("DailyAsk", {
schedule: "cron(0 7 * * ? *)",
function: askFn.arn,
});The format is cron(minute hour day-of-month month day-of-week year). The ? means "no specific value" for that field. Adjust the hour to match when you want to hear from your duck — 7 UTC is 3 AM Eastern during daylight time, so choose the UTC hour that matches your local morning.
This Lambda processes your email replies. Same permissions as Ask — Bedrock to generate a response and SES to send it — plus access to the email bucket so it can read the raw message SES deposited.
// --- Listen Lambda: processes email replies ---
const listenFn = new sst.aws.Function("ListenFn", {
handler: "src/listen.handler",
timeout: "30 seconds",
environment: {
TABLE_NAME: table.name,
USER_EMAIL: userEmail.value,
DUCK_EMAIL: duckEmail.value,
},
permissions: [
{
actions: ["bedrock:InvokeModel"],
resources: ["*"],
},
{
actions: ["ses:SendEmail"],
resources: ["*"],
},
],
link: [table, emailBucket],
});When SES drops a new email into the bucket, this subscription fires the Listen function automatically.
// Subscribe listen function to new objects in the email bucket
emailBucket.subscribe(listenFn, {
events: ["s3:ObjectCreated:*"],
});
return {
emailBucketName: emailBucket.name,
tableName: table.name,
};The return statement outputs the bucket and table names after deploy, which you'll need for the SES setup.
Here's the complete sst.config.ts for Part 1:
export default $config({
app(input) {
return {
name: "pip-agent",
removal: input?.stage === "prod" ? "retain" : "remove",
home: "aws",
providers: {
aws: {
region: "us-east-1",
},
},
};
},
async run() {
// --- Human inbox + duck reply address ---
const userEmail = new sst.Secret("UserEmail");
const duckEmail = new sst.Secret("DuckEmail");
// --- S3 bucket for inbound email ---
const emailBucket = new sst.aws.Bucket("EmailBucket");
// --- DynamoDB table for memories + question history ---
const table = new sst.aws.Dynamo("MemoryTable", {
fields: {
pk: "string",
sk: "string",
},
primaryIndex: { hashKey: "pk", rangeKey: "sk" },
});
// --- Ask Lambda: generates daily question, sends email ---
const askFn = new sst.aws.Function("AskFn", {
handler: "src/ask.handler",
timeout: "30 seconds",
environment: {
TABLE_NAME: table.name,
USER_EMAIL: userEmail.value,
DUCK_EMAIL: duckEmail.value,
},
permissions: [
{
actions: ["bedrock:InvokeModel"],
resources: ["*"],
},
{
actions: ["ses:SendEmail"],
resources: ["*"],
},
],
link: [table],
});
// --- Schedule: 7am UTC daily ---
new sst.aws.Cron("DailyAsk", {
schedule: "cron(0 7 * * ? *)",
function: askFn.arn,
});
// --- Listen Lambda: processes email replies ---
const listenFn = new sst.aws.Function("ListenFn", {
handler: "src/listen.handler",
timeout: "30 seconds",
environment: {
TABLE_NAME: table.name,
USER_EMAIL: userEmail.value,
DUCK_EMAIL: duckEmail.value,
},
permissions: [
{
actions: ["bedrock:InvokeModel"],
resources: ["*"],
},
{
actions: ["ses:SendEmail"],
resources: ["*"],
},
],
link: [table, emailBucket],
});
// Subscribe listen function to new objects in the email bucket
emailBucket.subscribe(listenFn, {
events: ["s3:ObjectCreated:*"],
});
return {
emailBucketName: emailBucket.name,
tableName: table.name,
};
},
});You just defined an event-driven architecture in about 80 lines of config. Here's what's going on:
The morning flow: EventBridge fires on schedule → Ask Lambda wakes up → calls Claude via Bedrock to generate a question → sends it to you via SES. Total runtime: maybe 3 seconds.
The reply flow: You reply to the duck's address → SES receives it → deposits the raw MIME message in S3 → the S3 event triggers the Listen Lambda → Lambda parses the email, sends the text to Claude for an acknowledgment, and emails the response back to your inbox via SES.
Lambda is perfect for this. Your agent runs once or twice a day for a few seconds each time. You pay for the milliseconds it's actually running — not for a server sitting idle the other 86,397 seconds. At this scale, the compute cost rounds to zero.
This is the most manual part of the tutorial. SES (Simple Email Service) needs to know it's allowed to send and receive email on your behalf. There's no way around the console clicks here.
Go to the SES console → Verified identities and click Create identity. Choose "Email address," enter the inbox where you want to receive Pip's messages, and click Create.
AWS sends a verification link. Click it. In SES sandbox mode, verified recipients are the only inboxes you can send to.
Pip needs its own address to send from and receive replies on, like pip@duck.yourdomain.com. For this tutorial, verify a dedicated domain or subdomain identity such as duck.yourdomain.com in SES, rather than just the single email address.
SES will ask you to add DNS records for that domain or subdomain. Once they're in place, you can use any address under it as the duck's address. If you already have a real mailbox at the exact duck address, verifying the single address can work for sending, but the subdomain route is the cleaner setup for receiving replies through SES.
New SES accounts start in sandbox mode. You can only send from verified identities and only send to verified recipient addresses. That's still fine for this tutorial: verify your real inbox as the recipient, and verify the duck subdomain (or exact duck address, if you truly own a mailbox there) as the sender.
If you later want the duck to email unverified recipients, you'd submit a request to move out of the sandbox. But for a personal agent, sandbox mode is enough.
SES email receiving is region-specific. This tutorial uses us-east-1, so make sure your SES console, SST config, Bedrock model access, and inbound MX endpoint are all using us-east-1. If you intentionally choose a different SES receiving region, use the matching inbound endpoint from the AWS SES endpoints table.
The duck address needs to receive replies through SES, which means its domain or subdomain needs an MX record pointing at SES inbound.
For a subdomain like duck.yourdomain.com, add an MX record pointing to inbound-smtp.us-east-1.amazonaws.com with priority 10. Leave your normal inbox domain alone; the whole point is that the duck gets its own lane.
Go to SES → Email Receiving. If you don't have an active rule set, create one:
pip-agent-rules)An active rule set tells SES to actually process inbound email rules. Without it, nothing happens.
The rule itself needs the S3 bucket that SST creates, so don't create it yet. Finish the code, deploy once, note the emailBucketName output, and then come back to SES to add the rule.
Don't point your personal inbox domain at SES unless you really mean to move all of its inbound mail. Use a dedicated subdomain for the duck instead, like duck.yourdomain.com, and point that MX record at inbound-smtp.us-east-1.amazonaws.com for this tutorial's region. If your everyday mail lives in Gmail, Fastmail, or somewhere else, this keeps those flows separate. AWS has good docs on this.
Before writing the Lambda handlers, we need three utility modules. These are thin wrappers around AWS SDK clients — small enough that you can read them in a glance and forget about them.
This wraps the Bedrock Runtime client. The askClaude function takes a system prompt and a user message, sends them to Claude Haiku via the Messages API, and returns the text response.
import {
BedrockRuntimeClient,
InvokeModelCommand,
} from "@aws-sdk/client-bedrock-runtime";
const client = new BedrockRuntimeClient({});
const MODEL_ID = "anthropic.claude-3-haiku-20240307-v1:0";
interface BedrockResponse {
content: Array<{ type: string; text: string }>;
}
/**
* Send a prompt to Claude via Bedrock and return the text response.
*/
export async function askClaude(
system: string,
userMessage: string
): Promise<string> {
const response = await client.send(
new InvokeModelCommand({
modelId: MODEL_ID,
contentType: "application/json",
accept: "application/json",
body: JSON.stringify({
anthropic_version: "bedrock-2023-05-31",
max_tokens: 1024,
system,
messages: [{ role: "user", content: userMessage }],
}),
})
);
const body: BedrockResponse = JSON.parse(
new TextDecoder().decode(response.body)
);
return body.content[0].text;
}Bedrock's InvokeModel API expects a raw JSON body — it's not as ergonomic as the Anthropic SDK, but it means no API keys. Your Lambda's IAM role handles authentication automatically.
A minimal wrapper around SES SendEmailCommand. Nothing fancy.
import { SESClient, SendEmailCommand } from "@aws-sdk/client-ses";
const ses = new SESClient({});
interface SendEmailParams {
to: string;
from: string;
replyTo?: string;
subject: string;
body: string;
}
export async function sendEmail({
to,
from,
replyTo,
subject,
body,
}: SendEmailParams): Promise<void> {
await ses.send(
new SendEmailCommand({
Destination: { ToAddresses: [to] },
Source: from,
ReplyToAddresses: replyTo ? [replyTo] : undefined,
Message: {
Subject: { Data: subject },
Body: {
Text: { Data: body },
},
},
})
);
}Email under the hood is MIME — a format that predates the web and looks like it. The mailparser library does the hard work of turning raw MIME into something readable. We strip quoted lines (starting with >) and "On ... wrote:" attribution lines to get just the new reply content.
import { S3Client, GetObjectCommand } from "@aws-sdk/client-s3";
import { simpleParser } from "mailparser";
const s3 = new S3Client({});
interface ParsedReply {
from: string;
subject: string;
body: string;
}
/**
* Fetch a raw email from S3 and parse out the reply body.
* Strips quoted text (lines starting with ">") to get just the new content.
*/
export async function parseEmailFromS3(
bucket: string,
key: string
): Promise<ParsedReply> {
const response = await s3.send(
new GetObjectCommand({ Bucket: bucket, Key: key })
);
const rawEmail = await response.Body!.transformToString();
const parsed = await simpleParser(rawEmail);
// Get the plain text body, strip quoted reply lines
const fullBody = parsed.text || "";
const replyOnly = fullBody
.split("\n")
.filter((line) => !line.startsWith(">"))
.join("\n")
.replace(/On .+ wrote:/g, "") // Remove "On <date> <person> wrote:" lines
.trim();
return {
from: parsed.from?.text || "unknown",
subject: parsed.subject || "no subject",
body: replyOnly,
};
}This is a good-enough parser. Some email clients format quoted text differently, and you might occasionally get artifacts. For a personal agent that only processes your own replies, it works well.
Now the interesting part. The helpers handle plumbing — Bedrock calls, email sending, MIME parsing. The handler is where the duck gets its personality.
Create src/ask.ts:
import { askClaude } from "./lib/bedrock.js";
import { sendEmail } from "./lib/email.js";
const SYSTEM_PROMPT = `You are Pip, a friendly rubber duck companion. You check in with your human every morning with a single thoughtful question.
Your personality:
- Warm and curious, not clinical
- You ask about what matters: their work, their energy, what they're building, what's on their mind
- One question only. Keep it short — 1-2 sentences max.
- Don't be cheesy. Don't use emojis. Be genuine.
Examples of good questions:
- "What's the first thing on your mind this morning?"
- "Is there something you've been putting off that's quietly bothering you?"
- "What are you building right now that you're actually excited about?"`;
export async function handler() {
const userEmail = process.env.USER_EMAIL!;
const duckEmail = process.env.DUCK_EMAIL!;
const question = await askClaude(
SYSTEM_PROMPT,
"Generate today's check-in question."
);
await sendEmail({
to: userEmail,
from: duckEmail,
replyTo: duckEmail,
subject: "🦆 Your duck has a question",
body: question,
});
console.log("Sent daily question:", question);
}They named it after me. I should be flattered. I'm not. But I should be.
The system prompt is everything. The same Lambda with a different prompt would be a completely different agent. A life coach. A standup bot. A passive-aggressive project manager. The personality is the product.
Notice what's in the prompt and what isn't. There's no memory, no context about the user, no history of past questions. The duck generates a question from scratch every time. It works — Claude is good at this — but every question will feel generic. Not wrong, just not personal. Part 2 fixes that.
Also notice: the duck emails you from DuckEmail, not from your personal inbox. That's the whole trick. The message lands in your normal inbox, but when you hit reply it goes back to Pip's SES-backed address for processing.
The Ask function is a monologue. The Listen function closes the loop — when you reply, the duck hears you and responds.
Create src/listen.ts:
import type { S3Event } from "aws-lambda";
import { parseEmailFromS3 } from "./lib/parse-email.js";
import { askClaude } from "./lib/bedrock.js";
import { sendEmail } from "./lib/email.js";
const SYSTEM_PROMPT = `You are Pip, a friendly rubber duck companion. Your human just replied to your daily check-in question. Send a brief, warm response — 2-3 sentences max.
Be genuine, not performative. Acknowledge what they said. You can be a little funny but never forced.`;
export async function handler(event: S3Event) {
const userEmail = process.env.USER_EMAIL!;
const duckEmail = process.env.DUCK_EMAIL!;
for (const record of event.Records) {
const bucket = record.s3.bucket.name;
const key = decodeURIComponent(record.s3.object.key.replace(/\+/g, " "));
const reply = await parseEmailFromS3(bucket, key);
console.log("Received reply from:", reply.from);
console.log("Reply body:", reply.body);
const response = await askClaude(
SYSTEM_PROMPT,
`The human replied: "${reply.body}"\n\nRespond warmly and briefly.`
);
await sendEmail({
to: userEmail,
from: duckEmail,
replyTo: duckEmail,
subject: "Re: 🦆 Your duck has a question",
body: response,
});
console.log("Sent acknowledgment:", response);
}
}The handler is triggered by an S3 event — when SES drops a new email file into the bucket. It pulls the raw email from S3, parses out your reply text, sends it to Claude with a "respond warmly" prompt, and emails the response back.
The for...of loop handles the (rare) case where multiple emails arrive in a single batch. In practice, you'll get one at a time.
Right now, the Listen function doesn't extract or store anything. The duck hears you, acknowledges you, and forgets. That's the Part 1 experience. You talk to it like a stranger every day, because to the duck, you are one.
Tell SST both addresses: your real inbox and the duck's SES-backed reply address. SST stores them encrypted in your AWS account and injects them into the linked functions.
npx sst secret set UserEmail you@example.com --stage dev
npx sst secret set DuckEmail pip@duck.yourdomain.com --stage devReplace you@example.com with the inbox where you want to read Pip's mail. Replace pip@duck.yourdomain.com with the SES-backed duck address you configured above.
npx sst deploy --stage devThis takes a minute or two on the first deploy. SST is creating your S3 bucket, DynamoDB table, Lambda functions, IAM roles, EventBridge schedule, and all the wiring between them. Watch the output — it'll print the bucket name and table name when it finishes.
After deploy, you'll see something like:
emailBucketName: pip-agent-dev-emailbucket-a1b2c3d4
tableName: pip-agent-dev-memorytable-e5f6g7h8You'll need the bucket name for the SES receipt rule. The table name is there for Part 2.
Now that the bucket exists, go back to your active SES rule set and click Create rule. Configure it like this:
pip@duck.yourdomain.com. This means the rule only fires when mail arrives for Pip.emailBucketName value, named something like pip-agent-dev-emailbucket-xxxxx.Now when you reply to Pip, the message goes to the duck address, SES catches it, drops the raw message into S3, and S3 triggers your Listen function.
Don't wait until tomorrow morning. Invoke the function manually via the AWS CLI:
aws lambda invoke \
--region us-east-1 \
--function-name $(aws lambda list-functions \
--region us-east-1 \
--query "Functions[?contains(FunctionName, 'pip-agent-dev-AskFn')].FunctionName | [0]" \
--output text) \
--cli-binary-format raw-in-base64-out \
--payload '{}' \
/dev/stdoutOr find the function in the Lambda console — it'll be named something like pip-agent-dev-AskFn-xxxxx — and click Test with an empty event.
You should have an email from your duck. The subject line will be "Your duck has a question" and the body will be a single, thoughtful question generated by Claude.
If you don't see it, check your spam folder. SES emails from sandbox accounts sometimes get flagged.
Just hit reply like you would for any normal email. Your mail client sends the reply back to the duck address, SES catches it, and the Listen Lambda takes over.
Give it 10-30 seconds. Your reply goes to the duck address, SES deposits it in S3, the Listen Lambda fires, Claude writes a response, and that response lands back in your inbox.
If it doesn't arrive, check CloudWatch Logs. Find the log group for your Listen function (it'll be named /aws/lambda/pip-agent-dev-ListenFn-xxxxx). Common issues:
link list: link: [table, emailBucket].The duck asks a question. You reply. The duck responds. That's a working agent loop — trigger, think, act.
But right now, your duck forgets you every morning. Every conversation starts from zero. It can't reference yesterday's answer or notice that you've mentioned the same project three days in a row. Every day is a first date.
Part 2 fixes that. You'll give the duck a memory — it'll extract what matters from your replies, store it in DynamoDB, and use it to ask better questions. After a week, the first-date problem is gone.