AWS inspector documentation change
Summary
Updated list of supported hardened images for ECR container image scanning to include Echo alongside Chainguard and Minimus.
Security assessment
This change expands documentation of supported security-hardened container images, which are security features that help reduce attack surface. However, this is a routine update adding a new supported vendor without evidence of addressing a specific security vulnerability.
Diff
diff --git a/inspector/latest/user/supported.md b/inspector/latest/user/supported.md index 11eb509a6..4a0f6c5a3 100644 --- a//inspector/latest/user/supported.md +++ b//inspector/latest/user/supported.md @@ -23 +23 @@ For Amazon EC2 instances, Amazon Inspector can scan for package vulnerabilities -For ECR container images, Amazon Inspector can scan for operating system and programming language package vulnerabilities. Amazon Inspector also supports hardened images provided by Chainguard and Minimus. Amazon Inspector does not scan for toolchain vulnerabilities in Rust——the version of the programming language compiler used to build the application introduces these vulnerabilities. +For ECR container images, Amazon Inspector can scan for operating system and programming language package vulnerabilities. Amazon Inspector also supports hardened images provided by Chainguard, Minimus, and Echo. Amazon Inspector does not scan for toolchain vulnerabilities in Rust——the version of the programming language compiler used to build the application introduces these vulnerabilities.