aws_compliance

AWS Compliance

Ensure AWS Elastic Container Registry (ECR) repositories have image scanning enabled. The rule is non-compliant if image scanning is not enabled for the ECR repository.

ecr_repository_image_scan_on_push_enabled

nist_800_172_3_14_7_e

3.14.7e Verify the correctness of [Assignment: organization-defined security critical or essential software, firmware, and hardware components] using [Assignment: organization-defined verification methods or techniques].

acsc_essential_eight_ml_1_6_2

ACSC-EE-ML1-6.2: Patch operating systems ML1

acsc_essential_eight_ml_1_6_3

ACSC-EE-ML1-6.3: Patch operating systems ML1

acsc_essential_eight_ml_1_6_4

ACSC-EE-ML1-6.4: Patch operating systems ML1

acsc_essential_eight_ml_2_2_5

ACSC-EE-ML2-2.5: Patch applications ML2

acsc_essential_eight_ml_2_6_2

ACSC-EE-ML2-6.2: Patch operating systems ML2

acsc_essential_eight_ml_2_6_3

ACSC-EE-ML2-6.3: Patch operating systems ML2

acsc_essential_eight_ml_2_6_4

ACSC-EE-ML2-6.4: Patch operating systems ML2

acsc_essential_eight_ml_3_2_2

ACSC-EE-ML3-2.2: Patch applications ML3

acsc_essential_eight_ml_3_6_2

ACSC-EE-ML3-6.2: Patch operating systems ML3

acsc_essential_eight_ml_3_6_3

ACSC-EE-ML3-6.3: Patch operating systems ML3

acsc_essential_eight_ml_3_6_4

ACSC-EE-ML3-6.4: Patch operating systems ML3

all_controls_ecr

nist_csf_id_ra_1

ID.RA-1

ECR repositories should have image scan on push enabled

Run individual configuration, compliance and security controls or full compliance benchmarks for CIS, FFIEC, PCI, NIST, HIPAA, RBI CSF, GDPR, SOC 2, Audit Manager Control Tower, FedRAMP, GxP and AWS Foundational Security Best Practices controls across all your AWS accounts using Powerpipe and Steampipe.

Apache License 2.0

steampipe-mod-aws-compliance

Control: ECR repositories should have image scan on push enabled

Description

Usage

SQL

Tags