Compliance > Kubernetes > CIS - ACK 1.0 > Managed Services >

Image Registry and Image Scanning

N/A

Source

Kube Bench

ID

6.1

Version

ack-1.0

6.1 Image Registry and Image Scanning

6.1.1 Ensure Image Vulnerability Scanning using ACR image scanning or a third party provider (Manual)

Recommended Action

Ensure Image Vulnerability Scanning using ACR image scanning or a third party provider by follow the ACR document: https://www.alibabacloud.com/help/doc-detail/160146.htm

6.1.2 Minimize user access to ACR (Manual)

Recommended Action

Minimize user access to ACR by follow the ACR document to setup network access control: https://www.alibabacloud.com/help/doc-detail/142179.htm And follow the ACR document to setup Resource Access Management (RAM) policies for ACR: https://www.alibabacloud.com/help/doc-detail/144229.htm

6.1.3 Minimize cluster access to read-only for ACR (Manual)

Recommended Action

Minimize cluster access to read-only for ACR

6.1.4 Minimize Container Registries to only those approved (Manual)

Recommended Action

Minimize Container Registries to only those approved

Aqua Container Security

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.

Copyright © 2023 Aqua Security Software Ltd. Privacy Policy | Terms of Use