Upgrading Nginx on Elastic Beanstalk to fix a critical vulnerability
We ran into an issue recently where during a pen test we were told we had a critical vulnerability becasue we were running a legacy nginx, we were pretty surpired to hear that because we use the nginx bundled by default with elastic beanstalk.
The AMI used for Elastic Beanstalk is AMI-123aas (replace with actual) with is based on eb-2018.
Details using the eb image as a base and removing nginx and adding the new one
Image of nginx being legacy
links to helpful articles