ECR
ECR Container Scanning integration
This CLI is able to sync asset, scans and vulnerabilities from a folder containing ECR csv & json files.
ecr- Import a folder of ECR files and sync assets, vulnerabilities and scans to RegScale.
ECR Processing Workflow
The CLI will process each ECR file and load assets, vulnerabilities and scans to RegScale.
import_ecrImport ECR scans and assets to RegScale
Required parameters
-
regscale_ssp_idThe ID number from RegScale of the System Security Plan, required. -
folder_pathThe full folder path where the ECR files are located.
Additional Information:
The CLI provides detailed logging throughout the process to indicate progress and to provide troubleshooting in case of issues.
File Format
Below are the expected columns of an ECR file:
| Header Name | Required |
|---|---|
| Name | Yes |
| Tag | |
| Severity | |
| CVE | |
| Description | |
| Package Name | |
| Package Version | |
| CVSS2 Score | |
| CVSS2 Vector | |
| URI |
Example Commands
Import ECR scans to SSP #16 in RegScale using the files located in the scans folder.
regscale ecr import_ecr --regscale_ssp_id 16 --folder_path /home/bryan/Sync/scans
NOTE: See All Scanner Integrations for information about how this updates Issues/POAMs
Updated 9 days ago