AWS securityhub documentation change
Summary
Updated document title and content to include 'CSPM' references in Security Hub naming
Security assessment
Changes are limited to rebranding (adding 'CSPM' to Security Hub references) without introducing security fixes, vulnerability disclosures, or new security features. Existing security documentation about Inspector/ECR integration remains functionally unchanged.
Diff
diff --git a/securityhub/latest/userguide/inspector-controls.md b/securityhub/latest/userguide/inspector-controls.md index 34df7e237..e5694f7fe 100644 --- a//securityhub/latest/userguide/inspector-controls.md +++ b//securityhub/latest/userguide/inspector-controls.md @@ -7 +7 @@ -# Security Hub controls for Amazon Inspector +# Security Hub CSPM controls for Amazon Inspector @@ -9 +9 @@ -These AWS Security Hub controls evaluate the Amazon Inspector service and resources. +These AWS Security Hub CSPM controls evaluate the Amazon Inspector service and resources. @@ -59 +59 @@ In a multi-account environment, the control generates findings in only the deleg -Amazon Inspector scans container images stored in Amazon Elastic Container Registry (Amazon ECR) for software vulnerabilities to generate package vulnerability findings. When you activate Amazon Inspector scans for Amazon ECR, you set Amazon Inspector as your preferred scanning service for your private registry. This replaces basic scanning, which is provided at no charge by Amazon ECR, with enhanced scanning, which is provided and billed through Amazon Inspector. Enhanced scanning gives you the benefit of vulnerability scanning for both operating system and programming language packages at the registry level. You can review findings discovered using enhanced scanning at the image level, for each layer of the image, on the Amazon ECR console. Additionally, you can review and work with these findings in other services not available for basic scanning findings, including AWS Security Hub and Amazon EventBridge. +Amazon Inspector scans container images stored in Amazon Elastic Container Registry (Amazon ECR) for software vulnerabilities to generate package vulnerability findings. When you activate Amazon Inspector scans for Amazon ECR, you set Amazon Inspector as your preferred scanning service for your private registry. This replaces basic scanning, which is provided at no charge by Amazon ECR, with enhanced scanning, which is provided and billed through Amazon Inspector. Enhanced scanning gives you the benefit of vulnerability scanning for both operating system and programming language packages at the registry level. You can review findings discovered using enhanced scanning at the image level, for each layer of the image, on the Amazon ECR console. Additionally, you can review and work with these findings in other services not available for basic scanning findings, including AWS Security Hub CSPM and Amazon EventBridge.