AWS guardduty documentation change
Summary
Added 'archives with extremely high compression ratios' to list of reasons for skipped S3 malware scans.
Security assessment
This documents a technical limitation of the malware scanning feature but does not indicate a newly discovered security issue. It improves transparency about security tool capabilities without addressing a specific vulnerability.
Diff
diff --git a/guardduty/latest/ug/monitoring-malware-protection-s3-scans-gdu.md b/guardduty/latest/ug/monitoring-malware-protection-s3-scans-gdu.md index 7e939dee6..b04e8240c 100644 --- a//guardduty/latest/ug/monitoring-malware-protection-s3-scans-gdu.md +++ b//guardduty/latest/ug/monitoring-malware-protection-s3-scans-gdu.md @@ -42 +42 @@ The following list provides the potential S3 object scan result values. If you h - * `UNSUPPORTED` – There are a few reasons why Malware Protection for S3 will skip a scan. Potential reasons include password-protected file, Malware Protection for S3 quotas, and support for certain Amazon S3 features may be unavailable. For more information, see [Capabilities of Malware Protection for S3](./s3-malware-protection-capability.html). + * `UNSUPPORTED` – There are a few reasons why Malware Protection for S3 will skip a scan. Potential reasons include password-protected file, archives with extremely high compression ratios, [Malware Protection for S3 quotas](./malware-protection-s3-quotas-guardduty.html), and support for certain Amazon S3 features may be unavailable. For more information, see [Capabilities of Malware Protection for S3](./s3-malware-protection-capability.html).