Amazon Inspector raises events during scanning. This pattern configures a rule to trigger a downstream consumer (Lambda function) when a Lambda function scan is complete. This enables event-driven automation around vulnerability scanning.

Before deploying this pattern you will need to turn on Amazon Inspector for your Lambda functions. Every time your Lambda function is scanned for vulnerabilities an event is raised with the results

Amazon Inspector events are sent to your default event bus (for free) and this pattern configures a rule to listen to these events to trigger downstream services

Using EventBridge rules you can filter which events and severity information you are interested in, and automate tasks from them

This pattern uses Lambda as a downstream consumer but you could pick any of the 20+ EventBridge targets supported.