Skip to main content

Configure AWS ECR Repositories should have a lifecycle policy configured

  1. Configure AWS ECR Repositories should have a lifecycle policy configured
  2. Use Case for AWS ECR Repositories should have a lifecycle policy configured
  3. Triage Guides by Violation Type
    1. Triage AWS ECR Repositories should have a lifecycle policy configured IMAGE_LIFECYCLE_POLICY_NOT_ENABLED

How do I enable this policy?

Signature:
Type: Pyrae::Policy::PolicyDocument::Signatory
Properties:
SignatureTeamUrn: { "PyRef": "PyraeTeam" }
PolicyUrn: "urn:pyrae:policy:us-west-2:sAutx4ZxiqTJUzJdvky2km:policy/ecrRepositoryLifecyclePolicyPolicy"

What permissions does this policy require in my AWS account?

{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"dynamodb:DescribeTable"
],
"Resource": "*"
}
]
}

What resources match this policy?

Type: Pyrae::Observer::MatchingRule
Properties:
MatchAccountType: aws
MatchUrnService: dynamodb
MatchUrnResourceType: table