Amazon Web Services (AWS) ECR
AWS Elastic Container Registry (ECR) Scan
RegScale can also import flat file reports from AWS Inspector. As this interacts with a file, none of the AWS Security Hub settings above apply.
This CLI is able to sync assets, scans, and vulnerabilities from a folder containing AWS ECR csv or json files.
ecr
- Import a folder of ECR files and sync assets, vulnerabilities and scans to RegScale.
ECR Processing Workflow
The CLI will process each ECR file and load assets, vulnerabilities and scans to RegScale.
import_ecr
Import ECR scans and assets to RegScale
Required parameters
-
regscale_ssp_id
The ID number from RegScale of the System Security Plan, required. -
folder_path
The full folder path where the ECR files are located.
Additional Information:
The CLI provides detailed logging throughout the process to indicate progress and to provide troubleshooting in case of issues.
File Format
Below are the expected columns of an ECR file:
Header Name | Required |
---|---|
Name | Yes |
Tag | |
Severity | |
CVE | |
Description | |
Package Name | |
Package Version | |
CVSS2 Score | |
CVSS2 Vector | |
URI |
Example Commands
Import ECR scans to SSP #16 in RegScale using the files located in the scans folder.
regscale ecr import_ecr --regscale_ssp_id 16 --folder_path /home/bryan/Sync/scans
NOTE: See All Scanner Integrations for information about how this updates Issues/POAMs
Updated 11 days ago