AWS inspector documentation change
Summary
Updated documentation about findings visibility, filtering options, and categorization logic (added container image/repository details)
Security assessment
Changes clarify how findings are displayed/filtered but do not indicate security vulnerability fixes. The added container image deployment metrics improve risk assessment capabilities but don't introduce new security features.
Diff
diff --git a/inspector/latest/user/findings-understanding-locating-analyzing.md b/inspector/latest/user/findings-understanding-locating-analyzing.md index a36e8a354..dec250278 100644 --- a//inspector/latest/user/findings-understanding-locating-analyzing.md +++ b//inspector/latest/user/findings-understanding-locating-analyzing.md @@ -5 +5 @@ -# Viewing your Amazon Inspector findings +# Viewing Amazon Inspector findings @@ -7 +7 @@ -You can view your Amazon Inspector findings in the Amazon Inspector console and with the Amazon Inspector [`ListFindings`](https://docs.aws.amazon.com/inspector/v2/APIReference/API_ListFindings.html) API. In the Amazon Inspector console, you can view your findings in the Amazon Inspector dashboard and on the **Findings** screen. You can also view your findings in [AWS Security Hub and Amazon Elastic Container Registry (Amazon ECR)](https://docs.aws.amazon.com/inspector/latest/user/integrations.html). By default, the Amazon Inspector dashboard and **Findings** screen show your active findings. You can also view your findings by category. The procedures in this section describe how to view your findings in Amazon Inspector console and with the Amazon Inspector API. +You can view findings in the Amazon Inspector console and with the Amazon Inspector [`ListFindings`](https://docs.aws.amazon.com/inspector/v2/APIReference/API_ListFindings.html) API. In the Amazon Inspector console, you can view all of your findings in the **Dashboard** and **Findings** screens. By default, these screens only show your active and critical findings. However, you can filter through findings or choose to view findings by category. You can also view some findings in [Security Hub and Amazon ECR](https://docs.aws.amazon.com/inspector/latest/user/integrations.html) if you activate these integrations. The procedures in this section describe how to view findings in Amazon Inspector console and with the Amazon Inspector `ListFindings` API. @@ -14 +14 @@ Console - 1. Sign in using your credentials, and then open the Amazon Inspector console at [https://console.aws.amazon.com/inspector/v2/home](https://console.aws.amazon.com/inspector/v2/home). + 1. Sign in using your credentials. Open the Amazon Inspector console at [https://console.aws.amazon.com/inspector/v2/home](https://console.aws.amazon.com/inspector/v2/home). @@ -16 +16 @@ Console - 2. (Optional) From the navigation pane, choose **Dashboard**. The dashboard shows an overview of the coverage for your environment and only your critical findings. + 2. (Optional) From the navigation pane, choose **Dashboard**. The dashboard shows an overview of the coverage for your environment and only your active and critical findings. @@ -18 +18 @@ Console - 3. (Optional) From the navigation pane, choose **Findings**. The **Findings** screen shows all of your active findings in a table where you can [filter your findings](https://docs.aws.amazon.com/inspector/latest/user/findings-managing-filtering.html) by status and filter criteria. You can also create [suppression rules](https://docs.aws.amazon.com/inspector/latest/user/findings-managing-supression-rules.html) to exclude findings from view. You can view details for a finding by choosing the name of the finding. + 3. (Optional) From the navigation pane, choose **Findings**. This screen lists all of your active findings. You can use filter criteria [to view specific findings](https://docs.aws.amazon.com/inspector/latest/user/findings-managing-filtering.html). To exclude findings from the list, [create a suppression rule](https://docs.aws.amazon.com/inspector/latest/user/findings-managing-supression-rules.html). To view details for a finding, choose the name of the finding. @@ -22 +22 @@ Console - * By vulnerability – Shows your most critical vulnerabilities. + * By vulnerability – Shows vulnerabilities with the most critical findings. @@ -24 +24 @@ Console - * By account – Shows all of your accounts and the scan coverage and total number of findings with [critical and high severity ratings](https://docs.aws.amazon.com/inspector/latest/user/findings-understanding-severity.html). + * By account – Shows accounts with the most critical findings. This category is only available to delegated administrators. @@ -26 +26 @@ Console -###### Note + * By instance – Shows Amazon EC2 instances with the most critical findings. This category does not include information about network availability. @@ -28 +28 @@ Console -This category is only available to delegated administrators. + * By container image – Shows Amazon ECR container images with the most critical findings. This category also provides basic information about your container images. It even includes details, such as how many Amazon ECS tasks and Amazon EKS pods are deployed. From this screen, you can find out how many tasks/pods were running in past 24 hours and stopped. @@ -30 +30 @@ This category is only available to delegated administrators. - * By instance – Shows your most vulnerabile Amazon EC2 instances. + * By container repository – Shows container repositories with the most critical findings. @@ -32,9 +32 @@ This category is only available to delegated administrators. -###### Note - -The findings grouped in this category don't include information about network availability. - - * By container image – Shows your most vulnerable Amazon ECR container images. - - * By container repository – Shows your most vulnerable repositories. - - * By Lambda function – Shows your most vulnerable Lambda functions. + * By Lambda function – Shows Lambda functions with the most critical findings.