AwsEcr resources in ASFF

The following are examples of the AWS Security Finding Format (ASFF) syntax for AwsEcr resources.

AWS Security Hub normalizes findings from various sources into ASFF. For background information about ASFF, see AWS Security Finding Format (ASFF).

AwsEcrContainerImage

The AwsEcrContainerImage object provides information about an Amazon ECR image.

The following example shows the AWS Security Finding Format (ASFF) for the AwsEcrContainerImage object. To view descriptions of AwsEcrContainerImage attributes, see AwsEcrContainerImageDetails in the AWS Security Hub API Reference.

Example


"AwsEcrContainerImage": {
    "RegistryId": "123456789012",
    "RepositoryName": "repository-name",
    "Architecture": "amd64"
    "ImageDigest": "sha256:a568e5c7a953fbeaa2904ac83401f93e4a076972dc1bae527832f5349cd2fb10",
    "ImageTags": ["00000000-0000-0000-0000-000000000000"],
    "ImagePublishedAt": "2019-10-01T20:06:12Z"
}

AwsEcrRepository

The AwsEcrRepository object provides information about an Amazon Elastic Container Registry repository.

The following example shows the AWS Security Finding Format (ASFF) for the AwsEcrRepository object. To view descriptions of AwsEcrRepository attributes, see AwsEcrRepositoryDetails in the AWS Security Hub API Reference.

Example


"AwsEcrRepository": {
    "LifecyclePolicy": {
        "RegistryId": "123456789012",
    },  
    "RepositoryName": "sample-repo",
    "Arn": "arn:aws:ecr:us-west-2:111122223333:repository/sample-repo",
    "ImageScanningConfiguration": {
        "ScanOnPush": true
    },
    "ImageTagMutability": "IMMUTABLE"
}

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

AwsEc2

AwsEcs