AWS inspector documentation change
Summary
Added documentation about Chainguard Libraries support in Python vulnerability scanning
Security assessment
Clarifies handling of back-ported security fixes to reduce false positives, improving security findings accuracy
Diff
diff --git a/inspector/latest/user/supported.md b/inspector/latest/user/supported.md index 0f7e33742..93cd23c8b 100644 --- a//inspector/latest/user/supported.md +++ b//inspector/latest/user/supported.md @@ -412 +412 @@ Amazon Inspector currently supports the following programming languages when sca -Amazon Inspector doesn't scan for toolchain vulnerabilities in Rust. The version of the programming language compiler used to build the application introduces these vulnerabilities. +Amazon Inspector doesn't scan for toolchain vulnerabilities in Rust. The version of the programming language compiler used to build the application introduces these vulnerabilities. For Python applications using [Chainguard Libraries](https://www.chainguard.dev/libraries), Amazon Inspector recognizes back-ported security fixes and excludes them from findings. @@ -428 +428 @@ Amazon Inspector doesn't scan for toolchain vulnerabilities in Rust. The version - * Python + * Python (including Chainguard Libraries)