Cannot scan AMI on AWS with v0.4.8.1

[nikpivkin]

Discussed in #5807

^{Originally posted by mloiseleur December 19, 2023}

Description

Same scan command, that did work with v0.48.0 do not work with v0.48.1.
It seems it encounter this specific issue: aws/aws-sdk-go-v2#2370 , when an AWS go mod dependency has been updated but not the others.

Desired Behavior

$ ./trivy version
Version: 0.48.1
[...]
$ trivy scan vm ami:ami-XXXX
[ Scan is done]

Actual Behavior

$ trivy scan vm ami:ami-XXXX
2023-12-19T14:46:21.847+0100	INFO	Vulnerability scanning is enabled
2023-12-19T14:46:21.847+0100	INFO	Misconfiguration scanning is enabled
2023-12-19T14:46:21.869+0100	FATAL	vm scan error: scan error: unable to initialize a scanner: unable to initialize a vm scanner: ec2.DescribeImages: not found, ResolveEndpointV2

Reproduction Steps

Note: same exact command works perfectly fine with v0.48.0

Target

Virtual Machine Image

Scanner

Vulnerability

Output Format

None

Mode

None

Debug Output

N/A

Operating System

Linux AMD64

Version

Version: 0.48.1

Checklist

• Run trivy image --reset
• Read the troubleshooting

[mloiseleur]

@nikpivkin @masahiro331 It's still does not work with v0.48.2. One can see this error message when switching from 0.48.0 to 0.48.2, with same conf & env, just changing image tag:

2024-01-11T13:27:28.581Z	INFO	Snapshot snap-0793dc1b3b75c0cac found
2024-01-11T13:27:28.582Z	FATAL	vm scan error: scan error: scan failed: failed analysis: EBS open error: EBS error: not found, ResolveEndpointV2
2024-01-11T13:27:30.503Z	INFO	Vulnerability scanning is enabled
2024-01-11T13:27:30.503Z	INFO	Misconfiguration scanning is enabled
2024-01-11T13:27:31.289Z	INFO	Snapshot snap-0e788653fa93a9d4e found
2024-01-11T13:27:31.290Z	FATAL	vm scan error: scan error: scan failed: failed analysis: EBS open error: EBS error: not found, ResolveEndpointV2
2024-01-11T13:27:33.166Z	INFO	Vulnerability scanning is enabled
2024-01-11T13:27:33.166Z	INFO	Misconfiguration scanning is enabled
2024-01-11T13:27:33.830Z	INFO	Snapshot snap-0f8a3647c96941cae found
2024-01-11T13:27:33.830Z	FATAL	vm scan error: scan error: scan failed: failed analysis: EBS open error: EBS error: not found, ResolveEndpointV2

[nikpivkin]

@masahiro331 I've opened a PR, could you take a look?

[tburow]

#5822 did not fix the issue - is there an update on this?? - trying to follow the multiple threads and there's not really an answer on this one yet that I can see

thanks
Tim

[knqyf263]

@tburow Fixed in #5934. You can try canary builds.
https://github.com/aquasecurity/trivy/actions/runs/7527808000

[tburow]

@tburow Fixed in #5934. You can try canary builds. https://github.com/aquasecurity/trivy/actions/runs/7527808000

is there going to be a patch release or do we need to wait for .49? if .49 when will that be? - Thanks again

[knqyf263]

v0.49.0 will include it.