💼 [ECS.8] Secrets should not be passed as container environment variables

• Contextual name: 💼 [ECS.8] Secrets should not be passed as container environment variables
• ID: /frameworks/aws-fsbp-v1.0.0/ecs/08
• Located in: 💼 Elastic Container Service (ECS)

Description

AWS Systems Manager Parameter Store can help you improve the security posture of your organization. We recommend using the Parameter Store to store secrets and credentials instead of directly passing them into your container instances or hard coding them into your code.

Similar

• AWS Security Hub
  • https://docs.aws.amazon.com/securityhub/latest/userguide/ecs-controls.html#ecs-8
• Internal
  • ID: dec-c-5d650d86

Similar Sections (Give Policies To)

Section	Sub Sections	Internal Rules	Policies	Flags
💼 NIST SP 800-53 Revision 5 → 💼 CA-9(1) Internal System Connections _ Compliance Checks			21
💼 NIST SP 800-53 Revision 5 → 💼 CM-2 Baseline Configuration	7		25
💼 PCI DSS v4.0.1 → 💼 8.6.2 Passwords/passphrases for any application and system accounts that can be used for interactive login are not hard coded in scripts, configuration/property files, or bespoke and custom source code.

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags