Amazon Inspector expands agentless EC2 scanning and introduces Windows KB-based findings Amazon Inspector now offers expanded agentless EC2 scanning with enhanced detection coverage, including new support for Windows operating system vulnerability scanning without requiring an agent. Security teams and IT administrators can now detect vulnerabilities across a broader range of software and applications on their EC2 instances — including WordPress, Apache HTTP Server, Python packages, and Ruby gems — as well as Windows OS vulnerabilities, all through agentless scanning. Customers automatically receive findings for newly supported software and applications with no configuration changes required. Amazon Inspector is also introducing Windows Knowledge Base (KB)-based findings for Windows OS vulnerabilities. Rather than receiving a separate finding for each CVE addressed by a single Microsoft patch, customers now receive a single consolidated KB finding that groups all related CVEs together. Each KB finding surfaces the highest CVSS score, EPSS score, and exploit availability from its constituent CVEs, and includes a direct link to the relevant Microsoft KB article — making it straightforward to understand exactly which patch to apply and why. All existing CVE-based Windows OS findings will automatically transition to KB-based findings. All existing CVE-based Windows OS findings will automatically transition to KB-based findings, and customers do not need to take any additional action. Both capabilities are available in all AWS Regions where Amazon Inspector is available. To learn more, visit the Amazon Inspector product page and the Amazon Inspector documentation.

🆕 Amazon Inspector now scans Windows EC2 for OS vulnerabilities without agents, consolidating KB-based findings to boost detection and simplify vulnerability management across diverse software.

#AWS #AmazonInspector #AwsGovcloudUs

Amazon Inspector expands agentless EC2 scanning and introduces Windows KB-based findings Amazon Inspector now offers expanded agentless EC2 scanning with enhanced detection coverage, including new support for Windows operating system vulnerability scanning without requiring an agent. Security teams and IT administrators can now detect vulnerabilities across a broader range of software and applications on their EC2 instances — including WordPress, Apache HTTP Server, Python packages, and Ruby gems — as well as Windows OS vulnerabilities, all through agentless scanning. Customers automatically receive findings for newly supported software and applications with no configuration changes required. Amazon Inspector is also introducing Windows Knowledge Base (KB)-based findings for Windows OS vulnerabilities. Rather than receiving a separate finding for each CVE addressed by a single Microsoft patch, customers now receive a single consolidated KB finding that groups all related CVEs together. Each KB finding surfaces the highest CVSS score, EPSS score, and exploit availability from its constituent CVEs, and includes a direct link to the relevant Microsoft KB article — making it straightforward to understand exactly which patch to apply and why. All existing CVE-based Windows OS findings will automatically transition to KB-based findings. All existing CVE-based Windows OS findings will automatically transition to KB-based findings, and customers do not need to take any additional action. Both capabilities are available in all AWS Regions where Amazon Inspector is available. To learn more, visit the https://aws.amazon.com/inspector/ and the https://docs.aws.amazon.com/inspector/latest/user/what-is-inspector.html. 

Amazon Inspector expands agentless EC2 scanning and introduces Windows KB-based findings

Amazon Inspector now offers expanded agentless EC2 scanning with enhanced detection coverage, including new support for Windows operating system vulnerability scanning...

#AWS #AmazonInspector #AwsGovcloudUs

Amazon Inspector Boosts Security with Java Gradle Support Amazon Inspector has rolled out significant updates to its automated vulnerability management capabilities, expanding coverage to include Java Gradle support and several other critical technologies. For organizations running AWS workloads, these enhancements mean more comprehensive security scanning across a broader range of applications and dependencies. What’s New in Amazon Inspector Amazon Inspector automatically discovers and continuously scans AWS resources — including EC2 instances, container images in Amazon ECR, and AWS Lambda functions for software vulnerabilities and unintended network exposure. The service generates prioritized findings by severity, helping teams focus on critical issues first. Java Gradle Support The standout feature is […]

Amazon Inspector Boosts Security with Java Gradle Support

Amazon Inspector automatically discovers and continuously scans AWS resources — including EC2 instances, container images in Amazon ECR, and AWS... #AmazonInspector

Amazon Inspector adds Java Gradle support and expands ecosystem coverage Amazon Inspector scanning for Lambda functions and Elastic Container Registry (ECR) images now supports Java Gradle inventory and vulnerability scanning. This release also adds coverage for MySQL, MariaDB, PHP, Jenkins-core, 7zip (on Windows), Elasticsearch, and Curl/LibCurl. This update enhances Amazon Inspector's ability to detect vulnerabilities and misconfigurations across a broader range of applications and environments. Amazon Inspector is an automated vulnerability management service that continually scans AWS workloads for software vulnerabilities and unintended network exposure, helping organizations improve their security posture and meet compliance requirements. The new Java Gradle support allows Inspector to scan Java dependencies based on gradle.lockfile content, providing comprehensive vulnerability assessments for Java applications. When you use Inspector to scan Lambda functions and ECR images, you will now see findings for MySQL, MariaDB, PHP, Jenkins-core, 7zip (on Windows), Elasticsearch, and Curl/LibCurl installations. These enhancements enable more accurate detection of vulnerabilities in packages installed outside of package managers, improving overall security coverage for AWS customers using these technologies. To learn more about Amazon Inspector and how it can help secure your AWS workloads, visit the https://aws.amazon.com/inspector/. For a full list of Amazon Inspector supported operating systems and programming languages, see the https://docs.aws.amazon.com/inspector/latest/user/supported.html. You can start using these new features today in all AWS Regions where Amazon Inspector is available.

Amazon Inspector adds Java Gradle support and expands ecosystem coverage

Amazon Inspector scanning for Lambda functions and Elastic Container Registry (ECR) images now supports Java Gradle inventory and vulnerability scanning. This release also adds covera...

#AWS #AmazonInspector #AwsGovcloudUs

Amazon Inspector adds Java Gradle support and expands ecosystem coverage Amazon Inspector scanning for Lambda functions and Elastic Container Registry (ECR) images now supports Java Gradle inventory and vulnerability scanning. This release also adds coverage for MySQL, MariaDB, PHP, Jenkins-core, 7zip (on Windows), Elasticsearch, and Curl/LibCurl. This update enhances Amazon Inspector's ability to detect vulnerabilities and misconfigurations across a broader range of applications and environments. Amazon Inspector is an automated vulnerability management service that continually scans AWS workloads for software vulnerabilities and unintended network exposure, helping organizations improve their security posture and meet compliance requirements. The new Java Gradle support allows Inspector to scan Java dependencies based on gradle.lockfile content, providing comprehensive vulnerability assessments for Java applications. When you use Inspector to scan Lambda functions and ECR images, you will now see findings for MySQL, MariaDB, PHP, Jenkins-core, 7zip (on Windows), Elasticsearch, and Curl/LibCurl installations. These enhancements enable more accurate detection of vulnerabilities in packages installed outside of package managers, improving overall security coverage for AWS customers using these technologies. To learn more about Amazon Inspector and how it can help secure your AWS workloads, visit the Amazon Inspector page. For a full list of Amazon Inspector supported operating systems and programming languages, see the user guide. You can start using these new features today in all AWS Regions where Amazon Inspector is available.

🆕 Amazon Inspector now supports Java Gradle and scans for vulnerabilities in MySQL, MariaDB, PHP, Jenkins, 7zip, Elasticsearch, and Curl, boosting security for AWS Lambda and ECR, and enhancing vulnerability detection across diverse applications.

#AWS #AmazonInspector #AwsGovcloudUs

Amazon Inspector supports organization-wide management through AWS Organizations policies Amazon Inspector can now be enabled, configured and managed across your organization using AWS Org policies. With this new capability, you can centrally configure and manage scan types—such as Amazon EC2 scanning, ECR scanning, Lambda standard and Code Scanning, and Code Security — across all the accounts in your organization, selected organizational units (OUs), or individual accounts. The new Inspector policy type within AWS Organization simplifies your service onboarding, management, and ensures consistent, organization-wide vulnerability scanning coverage. This feature helps you maintain a uniform security baseline by automating Inspector enablement through a single AWS Organization policy. To get started, designate a delegated admin within Amazon Inspector, enable the “Inspector policies” policy type in the AWS Organizations console, and create a policy that specifies the desired scan types and Regions. Once attached to your organization root or OUs, Inspector will automatically be enabled for all the specified scan-types across covered accounts . When the Inspector policy is created and attached, all in-scope accounts automatically are aligned with your Organization-wide policy definition. New accounts that join the organization or are moved into an OU with an attached policy, inherit Inspector enablement automatically—reducing operational overhead and eliminating coverage gaps. https://aws.amazon.com/inspector/ is a vulnerability management service that continuously scans AWS workloads including Amazon EC2 instances, container images, AWS Lambda functions, and code repositories for software vulnerabilities, code vulnerabilities, and unintended network exposure across your entire AWS organization. The AWS Organizations Inspector policy for organization-wide enablement is available at no additional cost to Amazon Inspector customers in all AWS commercial, China, and AWS GovCloud (US) Regions where https://aws.amazon.com/about-aws/global-infrastructure/regional-product-services/. To learn more about Amazon Inspector policies within AWS Organization, visit: https://docs.aws.amazon.com/inspector/latest/user/getting_started_tutorial.html https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies.html

Amazon Inspector supports organization-wide management through AWS Organizations policies

Amazon Inspector can now be enabled, configured and managed across your organization using AWS Org policies. With this new capability, you can centr...

#AWS #AwsGovcloudUs #AwsOrganizations #AmazonInspector

Explore Code Security Feature as GitLab and GitHub Source Connect in Amazon Inspector “ I have checked the documents of AWS to explore code security feature as gitlab and github source...

✍️ New blog post by GargeeBhatnagar

Explore Code Security Feature as GitLab and GitHub Source Connect in Amazon Inspector

#amazonec2 #awslambda #amazoninspector #aws

Amazon Inspector now available in additional AWS Regions Amazon Inspector is now available in Asia Pacific (Thailand), Middle East (UAE), Asia Pacific (Hyderabad), Asia Pacific (Malaysia), Asia Pacific (Melbourne), Mexico (Central), Israel (Tel Aviv), Canada West (Calgary), and Europe (Spain). Amazon Inspector is a vulnerability management service that continually scans AWS workloads including Amazon EC2 instances, container images, and AWS Lambda functions for software vulnerabilities and unintended network exposure across your AWS organization. With this expansion, Amazon Inspector extends its security coverage to these regions, designed to help customers automatically discover workloads, conduct continuous vulnerability assessments, and receive actionable security findings. The service is designed to detect newly launched Amazon EC2 instances, Lambda functions, and eligible container images pushed to Amazon ECR and scan them for software vulnerabilities and unintended network exposure. All accounts new to Amazon Inspector are eligible for a 15-day free trial to evaluate the service and estimate its cost. During the trial, all eligible Amazon EC2 instances, AWS Lambda functions, and container images pushed to Amazon ECR are continually scanned at no cost. After the trial period, you will be charged based on the number of scanned resources. Visit the Amazon Inspector https://aws.amazon.com/inspector/pricing/ for more details. To get started with https://aws.amazon.com/inspector/ visit our documentation or begin your https://aws.amazon.com/inspector/pricing/.

Amazon Inspector now available in additional AWS Regions

Amazon Inspector is now available in Asia Pacific (Thailand), Middle East (UAE), Asia Pacific (Hyderabad), Asia Pacific (Malaysia), Asia Pacific (Melbourne), Mexico (Central), Israel (Tel Aviv), Canada West (Calgar...

#AWS #AmazonInspector

Amazon Inspector now available in additional AWS Regions Amazon Inspector is now available in Asia Pacific (Thailand), Middle East (UAE), Asia Pacific (Hyderabad), Asia Pacific (Malaysia), Asia Pacific (Melbourne), Mexico (Central), Israel (Tel Aviv), Canada West (Calgary), and Europe (Spain). Amazon Inspector is a vulnerability management service that continually scans AWS workloads including Amazon EC2 instances, container images, and AWS Lambda functions for software vulnerabilities and unintended network exposure across your AWS organization. With this expansion, Amazon Inspector extends its security coverage to these regions, designed to help customers automatically discover workloads, conduct continuous vulnerability assessments, and receive actionable security findings. The service is designed to detect newly launched Amazon EC2 instances, Lambda functions, and eligible container images pushed to Amazon ECR and scan them for software vulnerabilities and unintended network exposure. All accounts new to Amazon Inspector are eligible for a 15-day free trial to evaluate the service and estimate its cost. During the trial, all eligible Amazon EC2 instances, AWS Lambda functions, and container images pushed to Amazon ECR are continually scanned at no cost. After the trial period, you will be charged based on the number of scanned resources. Visit the Amazon Inspector pricing page for more details. To get started with Amazon Inspector visit our documentation or begin your free trial today.

🆕 Amazon Inspector now available in more regions including Asia Pacific, Middle East, Mexico, Israel, Canada, and Europe to help detect vulnerabilities in AWS workloads. Free 15-day trial available. Visit documentation for more details.

#AWS #AmazonInspector

Amazon Inspector launches code security to shift security left in development Today, Amazon Web Services (AWS) announces the general availability of Amazon Inspector code security capabilities, helping you secure your applications before they reach production. This new feature, with native integration to GitHub and GitLab, helps you rapidly identify and prioritize security vulnerabilities and misconfigurations across your application source-code, dependencies, and infrastructure as code (IaC). You can evaluate source-code as builders push or pull code changes in repositories, within CI/CD pipelines, or through scheduled scans. Findings from these scans are surfaced both in the Amazon Inspector console for an aggregated view across the organization and within the source code management platform as fast feedback for the developers. This expansion builds upon existing Amazon Inspector capabilities for scanning Amazon EC2 instances, container images in Elastic Container Registry (ECR), and AWS Lambda functions to provide consistent vulnerability management from compute running on AWS to your code. Amazon Inspector delivers three core capabilities: Static Application Security Testing (SAST) for analyzing application source-code, Software Composition Analysis (SCA) for evaluating third-party dependencies, and Infrastructure as Code (IaC) scanning for validating infrastructure definitions. Amazon Inspector code scanning is available in 10 Regions including: US East (N. Virginia), US West (Oregon), US East (Ohio), Asia Pacific (Sydney), Asia Pacific (Tokyo), Europe (Frankfurt), Europe (Ireland), Europe (London), Europe (Stockholm), and Asia Pacific (Singapore). To learn more and get started with Inspector code security, visit: https://docs.aws.amazon.com/inspector/latest/user/getting_started_tutorial.html https://aws.amazon.com/inspector/pricing/

Amazon Inspector launches code security to shift security left in development

Today, Amazon Web Services (AWS) announces the general availability of Amazon Inspector code security capabilities, helping you secure your applications before they reach production. This new f...

#AWS #AmazonInspector

Amazon Inspector launches code security to shift security left in development Today, Amazon Web Services (AWS) announces the general availability of Amazon Inspector code security capabilities, helping you secure your applications before they reach production. This new feature, with native integration to GitHub and GitLab, helps you rapidly identify and prioritize security vulnerabilities and misconfigurations across your application source-code, dependencies, and infrastructure as code (IaC). You can evaluate source-code as builders push or pull code changes in repositories, within CI/CD pipelines, or through scheduled scans. Findings from these scans are surfaced both in the Amazon Inspector console for an aggregated view across the organization and within the source code management platform as fast feedback for the developers. This expansion builds upon existing Amazon Inspector capabilities for scanning Amazon EC2 instances, container images in Elastic Container Registry (ECR), and AWS Lambda functions to provide consistent vulnerability management from compute running on AWS to your code. Amazon Inspector delivers three core capabilities: Static Application Security Testing (SAST) for analyzing application source-code, Software Composition Analysis (SCA) for evaluating third-party dependencies, and Infrastructure as Code (IaC) scanning for validating infrastructure definitions. Amazon Inspector code scanning is available in 10 Regions including: US East (N. Virginia), US West (Oregon), US East (Ohio), Asia Pacific (Sydney), Asia Pacific (Tokyo), Europe (Frankfurt), Europe (Ireland), Europe (London), Europe (Stockholm), and Asia Pacific (Singapore). To learn more and get started with Inspector code security, visit: Getting started with Amazon Inspector Amazon Inspector free trial

🆕 Amazon Inspector now offers code security to shift security left in development, integrating with GitHub and GitLab to identify vulnerabilities in source code, dependencies, and IaC, available in 10 regions.

#AWS #AmazonInspector

Level up your cloud security! Get automated #AmazonInspector scans + deep insights, AI root cause analysis, & multi-cloud visibility with #eGEnterprise. Go beyond dashboards for true compliance & peace of mind.

Read more: hubs.li/Q03r22bb0

#AWS #CloudSecurity #DevSecOps

Amazon Inspector mejora la seguridad de contenedores mediante el mapeo de imágenes de Amazon ECR a contenedores en ejecución | Amazon Web Services Tradución del blog original Amazon Inspector enhances container security by mapping Amazon ECR images to running containers Al ejecutar cargas de trabajo en contenedores, es fundamental comprender cómo...

📰 Nuevo blog de #AWSEspanol: Amazon Inspector mejora la seguridad de contenedores mediante el mapeo de imágenes de Amazon ECR a contenedores en ejecución

#AmazonInspector #ContainerSecurity #CloudComputing #AWSECR #VulnerabilityManagement

Amazon Inspector enhances container security by mapping ECR images to running containers Amazon Inspector now automatically maps your Amazon Elastic Container Registry (Amazon ECR) images to specific tasks running on Amazon Elastic Container Service (Amazon ECS) or pods running on Amazon Elastic Kubernetes Service (Amazon EKS), helping identify where the images are actively in use. This enables you to focus your limited resources on patching most critical vulnerable images that are associated with running workloads, improving security and mean- time to remediation. With this launch, you can use Amazon Inspector console or APIs to identify your actively used container images, when you last used an image, and which clusters are running the image. This information will be included in your findings and resource coverage details, and will be routed to EventBridge. You can also control how long an image is monitored by Inspector after its ‘last in use’ date by updating the ECR re-scan duration using the console or APIs. This is in addition to the existing push and pull date settings. Your Amazon ECR images with continuous scanning enabled on Amazon Inspector will automatically get this updated data within your Amazon Inspector findings.   https://aws.amazon.com/inspector/ is a vulnerability management service that continually scans AWS workloads including Amazon EC2 instances, container images, and AWS Lambda functions for software vulnerabilities, code vulnerabilities, and unintended network exposure across your entire AWS organization. This feature is available at no additional cost to Amazon Inspector customers scanning thier container images in Amazon Elastic Container Registry (ECR). Feature is available in all commercial and AWS GovCloud (US) Regions where https://aws.amazon.com/about-aws/global-infrastructure/regional-product-services/. https://docs.aws.amazon.com/inspector/latest/user/getting_started_tutorial.html https://aws.amazon.com/inspector/pricing/

Amazon Inspector enhances container security by mapping ECR images to running containers

Amazon Inspector now automatically maps your Amazon Elastic Container Registry (Amazon ECR) images to specific tasks running on Amazon Elastic Container Service (Amazo...

#AWS #AwsGovcloudUs #AmazonInspector

Amazon Inspector enhances container security by mapping ECR images to running containers Amazon Inspector now automatically maps your Amazon Elastic Container Registry (Amazon ECR) images to specific tasks running on Amazon Elastic Container Service (Amazon ECS) or pods running on Amazon Elastic Kubernetes Service (Amazon EKS), helping identify where the images are actively in use. This enables you to focus your limited resources on patching most critical vulnerable images that are associated with running workloads, improving security and mean- time to remediation. With this launch, you can use Amazon Inspector console or APIs to identify your actively used container images, when you last used an image, and which clusters are running the image. This information will be included in your findings and resource coverage details, and will be routed to EventBridge. You can also control how long an image is monitored by Inspector after its ‘last in use’ date by updating the ECR re-scan duration using the console or APIs. This is in addition to the existing push and pull date settings. Your Amazon ECR images with continuous scanning enabled on Amazon Inspector will automatically get this updated data within your Amazon Inspector findings.   Amazon Inspector is a vulnerability management service that continually scans AWS workloads including Amazon EC2 instances, container images, and AWS Lambda functions for software vulnerabilities, code vulnerabilities, and unintended network exposure across your entire AWS organization. This feature is available at no additional cost to Amazon Inspector customers scanning thier container images in Amazon Elastic Container Registry (ECR). Feature is available in all commercial and AWS GovCloud (US) Regions where Amazon Inspector is available. Getting started with Amazon Inspector Amazon Inspector free trial

🆕 Amazon Inspector now maps ECR images to running containers on ECS/EKS, helping identify vulnerable images in use for better security. Available at no extra cost in all regions where Inspector is available.

#AWS #AwsGovcloudUs #AmazonInspector

Amazon Inspector enhances container security by mapping Amazon ECR images to running containers Amazon ECR image-to-container mapping that shows which images are actively running in containers and how widely they're deployed, and extended vulnerability scanning support for minimal base images including scratch, distroless, and Chainguard containers.

Amazon Inspector enhances container security by mapping Amazon ECR images to running containers

Amazon ECR image-to-container mapping that shows whi...

#AWS #AmazonElasticContainerRegistry #AmazonElasticContainerService #AmazonInspector #Announcements #Compute #Containers #Featured #Launch #News

Amazon Inspector expands ECR support for minimal container base images and enhanced detections Today, we are excited to announce support for scratch, distroless (Debian/Ubuntu based), and Chainguard image scanning with Amazon Inspector. With the expanded support for ECR images, Amazon Inspector extends its security coverage to minimal and security-focused container bases, enabling teams to maintain robust security practices even with highly optimized container environments. For ECR scanning, Amazon Inspector expands scanning to additional ecosystems including Go toolchain, Oracle JDK & JRE, Amazon Corretto, Apache Tomcat, Apache httpd, Wordpress (core, themes, plugins), Google Puppeteer (Chrome embedding), and Node.js runtime. This enhancement helps customers identify vulnerabilities in ecosystem components and gain visibility into third party software. The same functionality is also available via the Amazon Inspector SBOM Scan API. Additionally, Amazon Inspector now supports identifying https://docs.aws.amazon.com/inspector/latest/user/supported.html#formerly-supported-os running on Amazon EC2 instances and Amazon ECR container images. Amazon Inspector will generate a finding on resources using a discontinued operating system solely for informational purposes, aiding in the prioritization of risk mitigation strategies. https://aws.amazon.com/inspector/ is a vulnerability management service that continually scans AWS workloads including Amazon EC2 instances, container images, and AWS Lambda functions for software vulnerabilities, code vulnerabilities, and unintended network exposure across your entire AWS organization. Enhanced detections, and support for additional operating systems for ECR scanning is available in all commercial and AWS GovCloud (US) Regions where https://aws.amazon.com/about-aws/global-infrastructure/regional-product-services/. https://docs.aws.amazon.com/inspector/latest/user/getting_started_tutorial.html https://aws.amazon.com/inspector/pricing/

Amazon Inspector expands ECR support for minimal container base images and enhanced detections

Today, we are excited to announce support for scratch, distroless (Debian/Ubuntu based), and Chainguard image scanning with Amazon Inspector. With the expanded s...

#AWS #AmazonInspector #AwsGovcloudUs

Amazon Inspector expands ECR support for minimal container base images and enhanced detections Today, we are excited to announce support for scratch, distroless (Debian/Ubuntu based), and Chainguard image scanning with Amazon Inspector. With the expanded support for ECR images, Amazon Inspector extends its security coverage to minimal and security-focused container bases, enabling teams to maintain robust security practices even with highly optimized container environments. For ECR scanning, Amazon Inspector expands scanning to additional ecosystems including Go toolchain, Oracle JDK & JRE, Amazon Corretto, Apache Tomcat, Apache httpd, Wordpress (core, themes, plugins), Google Puppeteer (Chrome embedding), and Node.js runtime. This enhancement helps customers identify vulnerabilities in ecosystem components and gain visibility into third party software. The same functionality is also available via the Amazon Inspector SBOM Scan API. Additionally, Amazon Inspector now supports identifying discontinued operating systems running on Amazon EC2 instances and Amazon ECR container images. Amazon Inspector will generate a finding on resources using a discontinued operating system solely for informational purposes, aiding in the prioritization of risk mitigation strategies. Amazon Inspector is a vulnerability management service that continually scans AWS workloads including Amazon EC2 instances, container images, and AWS Lambda functions for software vulnerabilities, code vulnerabilities, and unintended network exposure across your entire AWS organization. Enhanced detections, and support for additional operating systems for ECR scanning is available in all commercial and AWS GovCloud (US) Regions where Amazon Inspector is available. Getting started with Amazon Inspector Amazon Inspector free trial

🆕 Amazon Inspector now scans scratch, distroless, and Chainguard images in ECR for security, plus identifies outdated OS in EC2 and ECR, available in all commercial and AWS GovCloud regions.

#AWS #AmazonInspector #AwsGovcloudUs

Amazon Inspector enhances the security engine for container images scanning Today, Amazon Inspector announced an upgrade to the engine powering its container image scanning for Amazon Elastic Container Registry (ECR). This upgrade will provide you with a more comprehensive view of the vulnerabilities in the third-party dependencies used in your container images. The enhancement to the engine will happen automatically without any action or disruption to your existing workflows. Existing customers can expect to see some findings closed as the new engine re-evaluates all the existing resources to better assess risks, while also surfacing new vulnerabilities as per the https://docs.aws.amazon.com/inspector/latest/user/sbom-generator-dependency-collection.html. https://aws.amazon.com/inspector/ is a vulnerability management service that continually scans AWS workloads including Amazon EC2 instances, container images, and AWS Lambda functions for software vulnerabilities, code vulnerabilities, and unintended network exposure across your entire AWS organization. This improved version of container image scanning within ECR is available in all commercial and AWS GovCloud (US) Regions where https://aws.amazon.com/about-aws/global-infrastructure/regional-product-services/. https://docs.aws.amazon.com/inspector/latest/user/getting_started_tutorial.html https://aws.amazon.com/inspector/pricing/

Amazon Inspector enhances the security engine for container images scanning

Today, Amazon Inspector announced an upgrade to the engine powering its container image scanning for Amazon Elastic Container Registry (ECR). This upgrade will provide y...

#AWS #AmazonInspector #AwsGovcloudUs #AmazonEcr

Amazon Inspector enhances the security engine for container images scanning Today, Amazon Inspector announced an upgrade to the engine powering its container image scanning for Amazon Elastic Container Registry (ECR). This upgrade will provide you with a more comprehensive view of the vulnerabilities in the third-party dependencies used in your container images. The enhancement to the engine will happen automatically without any action or disruption to your existing workflows. Existing customers can expect to see some findings closed as the new engine re-evaluates all the existing resources to better assess risks, while also surfacing new vulnerabilities as per the new engine’s dependency collection. Amazon Inspector is a vulnerability management service that continually scans AWS workloads including Amazon EC2 instances, container images, and AWS Lambda functions for software vulnerabilities, code vulnerabilities, and unintended network exposure across your entire AWS organization. This improved version of container image scanning within ECR is available in all commercial and AWS GovCloud (US) Regions where Amazon Inspector is available. Getting started with Amazon Inspector Amazon Inspector free trial

🆕 Amazon Inspector enhances the security engine for container images scanning

#AWS #AmazonInspector #AwsGovcloudUs #AmazonEcr