AWS inspector documentation change
Summary
Clarified that Amazon Inspector does not scan Rust toolchain vulnerabilities in ECR images
Security assessment
Change documents a scanning limitation rather than addressing a security issue or adding security features
Diff
diff --git a/inspector/latest/user/supported.md b/inspector/latest/user/supported.md index b357a7558..dcd9e8db2 100644 --- a//inspector/latest/user/supported.md +++ b//inspector/latest/user/supported.md @@ -21 +21 @@ For Amazon EC2 instances, Amazon Inspector can scan for package vulnerabilities -For ECR container images, Amazon Inspector can scan for operating system and programming language package vulnerabilities. Amazon Inspector does not scan for toolchain vulnerabilities. The version of the programming language compiler used to build the application introduces these vulnerabilities. +For ECR container images, Amazon Inspector can scan for operating system and programming language package vulnerabilities. Amazon Inspector does not scan for toolchain vulnerabilities in Rust. The version of the programming language compiler used to build the application introduces these vulnerabilities.