The Threat Stack Cloud Security PlatformⓇ (CSP) supports the Vulnerabilities feature for the Amazon Linux 1 and Amazon Linux 2 operating systems (OSs).
The Threat Stack CSP supports the Amazon Linux 1 OS for all Agents. However, the Amazon Linux 2 OS is only supported in the Agent 2 series.
Threat Stack scrapes the Amazon Security Advisories, retrieves vulnerabilities with fixes available, and displays the ones relevant to your infrastructure in the Threat Stack CSP.
The Amazon Security Advisories only provide vulnerabilities with available fixes. Currently the Threat Stack CSP cannot retrieve or display vulnerabilities with no available fixes for the Amazon Linux 1 and 2 OSs.