Skip to main content

🔌 AWS ECS Task Definition - object.extracts.yaml

  • Contextual name: 🔌 object.extracts.yaml
  • ID: /types/CA10__CaAwsEcsTaskDefinition__c/object.extracts.yaml

Used In

LogicPolicyFlags
🧠 prod.logic.yaml🟢🛡️ AWS ECS Task Definition logging is not configured🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ AWS ECS Task Definition passes secrets as container environment variables🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ AWS ECS Task Definition runs as privileged🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ AWS ECS Task Definition Readonly Root Filesystem is disabled🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ AWS ECS Task Definition shares the host's process namespace🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ AWS ECS Task Definition with Host Network Mode runs containers as root🟢🟢 x3

Content

Open File

---
extracts:
# Values: bridge | host | awsvpc | none
# Nullable.
  - name: "CA10__networkMode__c"
    value:
      FIELD:
        path: "CA10__networkMode__c"
# Values: ACTIVE | INACTIVE | DELETE_IN_PROGRESS
# Not nullable. 
  - name: "CA10__status__c"
    value:
      FIELD:
        path: "CA10__status__c"
        undeterminedIf:
          noAccessDelegate:
            path: "CA10__status__c"
            currentStateMessage: "Task Definition status cannot be empty. Possible permission issue with ecs:DescribeTaskDefinition"
# Values: task | host
# Nullable.
  - name: "CA10__pidMode__c"
    value:
      FIELD:
        path: "CA10__pidMode__c"