Minimize user access to Amazon ECR

An XCCDF Rule

Description

Restrict user access to Amazon ECR, limiting interaction with build images to only authorized personnel and service accounts.

Rationale

Weak access control to Amazon ECR may allow malicious users to replace built images with vulnerable containers.

ID: xccdf_org.ssgproject.content_rule_registry_access
Severity: Unknown
References: 5.1.2

CCE-89643-1
Updated: about 1 year ago