AWS Security ChangesHomeSearch

AWS guardduty documentation change

Service: guardduty · 2026-06-10 · Documentation low

File: guardduty/latest/ug/guardduty_findings-summary.md

Summary

Added note about default hash value when malware scan hash calculation fails

Security assessment

Clarifies security feature behavior (malware scan reporting) without evidence of security vulnerability being fixed

Diff

diff --git a/guardduty/latest/ug/guardduty_findings-summary.md b/guardduty/latest/ug/guardduty_findings-summary.md
index bcf72f8c1..1ebec4270 100644
--- a//guardduty/latest/ug/guardduty_findings-summary.md
+++ b//guardduty/latest/ug/guardduty_findings-summary.md
@@ -749,0 +750,4 @@ The value of this field is available only if the top-level object is an archive
+###### Note
+
+In cases where the hash cannot be calculated, the scan result is still delivered and the hash value defaults to the SHA-256 of an empty string (`e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855`).
+