Environment Details
When reviewing the time stamps of vulnerabilities between Vanta and AWS you may find that the time stamp for when a vulnerability was found in AWS versus Vanta is showing a different date.
Cause
While AWS Inspector will show you the time the vulnerability was found per container, Vanta will track it from the first time it was detected at the image level.
Resolution
- When resolving vulnerabilities, try to resolve them in the container and within the base image so that the vulnerability will not keep reappearing within Vanta every time a new container is created based on that image.