AWS Inspector

Amazon Inspector vulnerability scan.

👉 Before you start, set up these services manually:

Use the Console to enable Inspector.
Fleet Manager to managed EC2 instances, Default Host Management is enough for testing.

Create the test resources:

terraform init
terraform apply -auto-approve

The configuration will create the following resources:

To scan an ECR image, upload one if none is available:

bash ecrBuildPush.bash

If all goes well, coverage should be 100% for all environments created by this config:

The EC2 instance should be found by the Fleet Manager:

For ECR, vulnerabilities should be shown on Inspector as well:

Name		Name	Last commit message	Last commit date
Latest commit History 11 Commits
.assets		.assets
.gitignore		.gitignore
.terraform.lock.hcl		.terraform.lock.hcl
LICENSE		LICENSE
README.md		README.md
ecrBuildPush.bash		ecrBuildPush.bash
lambda.zip		lambda.zip
main.tf		main.tf
output.tf		output.tf
variables.tf		variables.tf

Provide feedback