Skip to main content

πŸ’Ό [ECR.1] ECR private repositories should have image scanning configured

  • Contextual name: πŸ’Ό [ECR.1] ECR private repositories should have image scanning configured
  • ID: /frameworks/aws-fsbp-v1.0.0/ecr/01
  • Located in: πŸ’Ό Elastic Container Registry (ECR)

Description​

ECR image scanning helps in identifying software vulnerabilities in your container images. Configuring image scanning on ECR repositories adds a layer of verification for the integrity and safety of the images being stored.

Similar​

Similar Sections (Give Policies To)​

SectionSub SectionsInternal RulesPoliciesFlags
πŸ’Ό NIST SP 800-53 Revision 5 β†’ πŸ’Ό RA-5 Vulnerability Monitoring and Scanning11
πŸ’Ό PCI DSS v4.0.1 β†’ πŸ’Ό 6.2.3 Bespoke and custom software is reviewed prior to being released into production or to customers, to identify and correct potential coding vulnerabilities.1
πŸ’Ό PCI DSS v4.0.1 β†’ πŸ’Ό 6.2.4 Software engineering techniques or other methods are defined and in use by software development personnel to prevent or mitigate common software attacks and related vulnerabilities in bespoke and custom software.

Sub Sections​

SectionSub SectionsInternal RulesPoliciesFlags