Aqua CSPM

AWS › ECR ›

ECR Repository Policy

Quick Info


Plugin Title	ECR Repository Policy
Cloud	AWS
Category	ECR
Description	Ensures ECR repository policies do not enable global or public access to images
More Info	ECR repository policies should limit access to images to known IAM entities and AWS accounts and avoid the use of account-level wildcards.
AWS Link	https://docs.aws.amazon.com/AmazonECR/latest/userguide/RepositoryPolicyExamples.html
Recommended Action	Update the repository policy to limit access to known IAM entities.

Detailed Remediation Steps

Cloud Security Posture Management (CSPM)

Scan, monitor and remediate configuration issues in public cloud accounts according to best practices and compliance standards, across AWS, Azure, Google Cloud, and Oracle Cloud.

Sign up for free

Cloud native security as-a-service

Aqua Wave

Aqua Container Security

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.

Copyright © 2021 Aqua Security Software Ltd. Privacy Policy | Terms of Use