AWS EKS/AWS Inspector and Package Vulnerability
0
Hi,
If I have an EKS managed node group with EC2 instances and some package vulnerabilities. What is the best approach to fix the issues with Package Vulnerabilities? And second question, if I update EKS cluster the EC2 instances are update as well, should I then again fix the package vulnerabilities?
Thank you, M
1回答
- 新しい順
- 投票が多い順
- コメントが多い順
0
The vulnerabilities can be fixed by upgrading the nodes to the latest or specific aws-eks-ami version which fixes the mentioned CVE ID. There could be some false positives as well that even after upgrading the vulnerabilities still persists which can be acknowledged or ignored.
回答済み 1年前
You mean it's AWS responsibility to fix package vulnerabilities when I update EKS manage node group version?