Skip to main content

Configure AWS ECR Repositories should have a lifecycle policy configured

Quick Links

Configure AWS ECR Repositories should have a lifecycle policy configured
Use Case for AWS ECR Repositories should have a lifecycle policy configured
Triage Guides by Violation Type
1. Triage AWS ECR Repositories should have a lifecycle policy configured IMAGE_LIFECYCLE_POLICY_NOT_ENABLED

How do I enable this policy?

Signature:
  Type: Pyrae::Policy::PolicyDocument::Signatory
  Properties:
    SignatureTeamUrn: { "PyRef": "PyraeTeam" }
    PolicyUrn: "urn:pyrae:policy:us-west-2:sAutx4ZxiqTJUzJdvky2km:policy/ecrRepositoryLifecyclePolicyPolicy"

What permissions does this policy require in my AWS account?

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Action": [
        "dynamodb:DescribeTable"
      ],
      "Resource": "*"
    }
  ]
}

What resources match this policy?

Type: Pyrae::Observer::MatchingRule
Properties:
  MatchAccountType: aws
  MatchUrnService: dynamodb
  MatchUrnResourceType: table

Quick Links
How do I enable this policy?
What permissions does this policy require in my AWS account?
What resources match this policy?