HomeGuidesAPI ReferenceChangelog
Log In
Guides

Amazon Web Services (AWS) ECR

AWS Elastic Container Registry (ECR) Scan

RegScale can also import flat file reports from AWS Inspector. As this interacts with a file, none of the AWS Security Hub settings above apply.

This CLI is able to sync assets, scans, and vulnerabilities from a folder containing AWS ECR csv or json files.

  • ecr - Import a folder of ECR files and sync assets, vulnerabilities and scans to RegScale.

ECR Processing Workflow

The CLI will process each ECR file and load assets, vulnerabilities and scans to RegScale.

  • import_ecr Import ECR scans and assets to RegScale
Required parameters
  • regscale_ssp_id The ID number from RegScale of the System Security Plan, required.

  • folder_path The full folder path where the ECR files are located.

Additional Information:

The CLI provides detailed logging throughout the process to indicate progress and to provide troubleshooting in case of issues.

File Format

Below are the expected columns of an ECR file:

Header NameRequired
NameYes
Tag
Severity
CVE
Description
Package Name
Package Version
CVSS2 Score
CVSS2 Vector
URI

Example Commands

Import ECR scans to SSP #16 in RegScale using the files located in the scans folder.

  • regscale ecr import_ecr --regscale_ssp_id 16 --folder_path /home/bryan/Sync/scans

📘

NOTE: See All Scanner Integrations for information about how this updates Issues/POAMs