Enhanced scan findings do not appear in aws_ecr_image_scan_finding, but AWS CLI successfully retrieves them.

[Luis-Garcia-206]

Describe the bug
Enhanced scan findings do not appear in aws_ecr_image_scan_finding or aws_ecr_image, but AWS CLI successfully retrieves them (aws ecr describe-image-scan-findings).
However, Basic scan findings appear correctly in both tables.

Steampipe version (steampipe -v)
Steampipe v1.0.3

Plugin version (steampipe plugin list)
aws@latest | 1.6.0

To reproduce

1. In AWS Web Console / Amazon ECR / Private registry / Scanning / Select Enhanced scanning
2. Scan at least one repository/image and wait to have the scan results.
3. In steampipe, SELECT * FROM aws_ecr_image_scan_finding WHERE ... , does not return data.
4. In steampipe, SELECT * FROM aws_ecr_image WHERE ... , return the correct images, but the fields image_scan_findings_summary and image_scan_status are in NULL.

Expected behavior
When Enhanced scanning is selected and at least one repository is scanned:

• The table aws_ecr_image_scan_finding should contain data related to Enhanced scanning findings, just as it does when Basic scanning is selected.
• The table aws_ecr_image should contain the respective info in image_scan_findings_summary and image_scan_status related to Enhanced scanning findings, just as it does when Basic scanning is selected.

Additional context
Everything works correctly when Basic scanning is selected in: AWS Web Console / Amazon ECR / Private registry / Scanning.

[ParthaI]

Hello @Luis-Garcia-206,

Sorry to hear that you're experiencing this issue. The aws_ecr_image_scan_finding table does not currently return Enhanced Scanning details for image tags. To support this, we may need to either create a separate table or modify the existing table design to include enhanced scanning findings.

Thanks! 😊

[Luis-Garcia-206]

Thanks for your fast answer @ParthaI, happy Monday!