AWS inspector medium security documentation change
Summary
Updated supported languages and toolchain components: removed Go from unscanned toolchain list, added Go toolchain and Java JDK to unscanned components
Security assessment
Clarifies that Go toolchain and Java JDK vulnerabilities are not scanned, correcting previous documentation. This addresses potential misconfiguration in vulnerability detection scope, which impacts security posture.
Diff
diff --git a/inspector/latest/user/supported.md b/inspector/latest/user/supported.md index e83fd233c..b357a7558 100644 --- a/inspector/latest/user/supported.md +++ b/inspector/latest/user/supported.md @@ -340 +340 @@ Amazon Inspector currently supports the following programming languages when sca -Amazon Inspector doesn't scan for toolchain vulnerabilities in Go and Rust. The version of the programming language compiler used to build the application introduces these vulnerabilities. +Amazon Inspector doesn't scan for toolchain vulnerabilities in Rust. The version of the programming language compiler used to build the application introduces these vulnerabilities. @@ -345,0 +346,2 @@ Amazon Inspector doesn't scan for toolchain vulnerabilities in Go and Rust. The + * Go toolchain + @@ -347,0 +350,2 @@ Amazon Inspector doesn't scan for toolchain vulnerabilities in Go and Rust. The + * Java JDK +