Posted On: Nov 26, 2023

Amazon Inspector code scanning for AWS Lambda functions now includes assisted code remediation using generative artificial intelligence (AI) and automated reasoning. Amazon Inspector code remediation for Lambda function provides in-context code patches for multiples classes of vulnerabilities detected during security scans for AWS Lambda function. It extends the Amazon Inspector capabilities to assess custom proprietary Lambda code for security issues like injection flaws, data leaks, weak cryptography, or missing encryption based on AWS security best practices. Upon discovering vulnerabilities, Amazon Inspector provides actionable security findings, including affected code snippets and remediation suggestions. As part of supported findings, Amazon Inspector provides code patches associated with the vulnerabilities, simplifying the process of updating vulnerable code.

Amazon Inspector is a vulnerability management service that continually scans AWS workloads for software vulnerabilities, code vulnerabilities, and unintended network exposure across your entire organization. Once activated, Amazon Inspector automatically discovers all of your Amazon Elastic Compute Cloud (EC2) instances, container images in Amazon Elastic Container Registry (ECR), and AWS Lambda functions, at scale, and continuously monitors them for known vulnerabilities, giving you a consolidated view of vulnerabilities across your compute environments.

Amazon Inspector code remediation for Lambda function is available in 10 Regions including US East (N. Virginia), US West (Oregon), US East (Ohio), Asia Pacific (Sydney), Asia Pacific (Tokyo), Europe (Frankfurt), Europe (Ireland), Europe (London), Europe (Stockholm), and Asia Pacific (Singapore).

To learn more and get started with continual vulnerability scanning of your workloads, visit: