Scan Your Container Images For Vulnerabilities Using Image Scanning | AWS
AWS Announces Image Scanning For Amazon ECR
What is Amazon ECR and how this new service is related to this?
ECR is Elastic Container Registry provided by Amazon to store, decrypt and manage container images.This new service scans container images in ECR for any operating system vulnerabilities.Amazon ECR uses the Common Vulnerabilities and Exposures (CVEs) database from the open source CoreOS Clair project and provides you with a list of scan findings.
How to REDUCE your monthly cloud bills by 25% in 7 days ?
5 simple and highly effective suggestions in blueprint to reduce your cloud costs.
How Can I Scan My Container Images?
Amazon allows you to choose from the below options ..
- You can scan your container images stored in ECR manually.
- Enable Image Scan for push on your repositories so that each and every image is checked against aggregated set of Common Vulnerabilities and Exposures (CVEs).
- Scan Images using an API command there by allowing you to set up periodic scans for your container images .This ensures continuous monitoring of your images.
What Information Will These Scans Provide?
Based on the Common Vulnerabilities and Exposures (CVEs) database, the findings will list all the software vulnerabilities based on the severity .
What are the charges associated with this new service from AWS?
Scanning of your container images is completely free for Amazon ECR and is available for all AWS Regions and GovCloud(US).
For further documentation on Image Scanning visit https://docs.aws.amazon.com/AmazonECR/latest/userguide/image-scanning.html
For your AWS, Azure, Google,DevOps Consulting, Implementation and Support Services, please contact us using the form link provided below.
For any queries reach us at email@example.com | Use the Form