Once you’ve integrated with AWS Cloudwatch, you have access to metrics from AWS Inspector, which is is a vulnerability management service that periodically checks the security of your AWS workloads. Amazon Inspector automatically locates and checks for software flaws and accidental network exposure on Amazon EC2 instances and container images stored in Amazon Elastic Container Registry (Amazon ECR).

All available AWS integrations

To verify metrics are reporting, search for the metrics on the Metric details page in Project settings.

The following table shows the Inspector metrics ingested by Lightstep.

Metric Name Unit Description
aws.inspector.total_matching_agents count Number of agents that match the target.
aws.inspector.total_healthy_agents count Number of healthy agents that match this target.
aws.inspector.total_assessment_runs count Number of assessment runs for the target.
aws.inspector.total_assessment_run_findings count Number of findings for the target.