Plugin Title | ECR Repository Policy |
Cloud | AWS |
Category | ECR |
Description | Ensures ECR repository policies do not enable global or public access to images |
More Info | ECR repository policies should limit access to images to known IAM entities and AWS accounts and avoid the use of account-level wildcards. |
AWS Link | https://docs.aws.amazon.com/AmazonECR/latest/userguide/RepositoryPolicyExamples.html |
Recommended Action | Update the repository policy to limit access to known IAM entities. |