1. Image Vulnerability Scanning Should Be Enabled For Amazon ECR

More Info:

Image Vulnerability scanning should be enabled for Amazon ECR container images after being pushed to a repository. Amazon ECR image scanning helps in identifying software vulnerabilities in your container images. Amazon ECR uses the Common Vulnerabilities and Exposures (CVEs) database from the open-source Clair project and provides a list of scan findings.

Risk Level



Security, Operational Maturity

Compliance Standards


Additional Reading: