AWS – Amazon Inspector enhances the security engine for container images scanning

Today, Amazon Inspector announced an upgrade to the engine powering its container image scanning for Amazon Elastic Container Registry (ECR). This upgrade will provide you with a more comprehensive view of the vulnerabilities in the third-party dependencies used in your container images. The enhancement to the engine will happen automatically without any action or disruption to your existing workflows. Existing customers can expect to see some findings closed as the new engine re-evaluates all the existing resources to better assess risks, while also surfacing new vulnerabilities as per the new engine’s dependency collection.

Amazon Inspector is a vulnerability management service that continually scans AWS workloads including Amazon EC2 instances, container images, and AWS Lambda functions for software vulnerabilities, code vulnerabilities, and unintended network exposure across your entire AWS organization.

This improved version of container image scanning within ECR is available in all commercial and AWS GovCloud (US) Regions where Amazon Inspector is available.

• Getting started with Amazon Inspector
• Amazon Inspector free trial

Read More for the details.