Posted On: Sep 4, 2024
Today, Amazon Elastic Container Registry (ECR) announced the general availability of a new version of basic scanning. The new version of ECR basic scanning uses Amazon Web Services’ native scanning technology, which is designed to provide customers with improved scanning results and vulnerability detection across a broad set of popular operating systems. This allows customers to further strengthen the security of their container images.
ECR basic scanning enables customers to identify software vulnerabilities in their ECR container images. Customers can either scan their container images manually or via configurations that specify which repositories should be scanned when an image is pushed. Today’s launch enables customers to detect container image vulnerabilities across popular operating systems and receive improved scan findings.
The new version of ECR basic scanning is now generally available in Amazon Web Services China (Beijing) Region, operated by Sinnet, and Amazon Web Services China (Ningxia) Region, operated by NWCD. Existing customers can switch to the new version by using the Amazon Web Services console or using the new put-account-setting API. New ECR accounts are automatically opted into using the new scanning version. To learn more about ECR basic scanning, this change, and supported regions, please visit our documentation. ECR also offers enhanced scanning which is powered by Amazon Inspector and comes with additional security benefits, including scanning for programming language package vulnerabilities. A complete list of differences between ECR basic scanning and enhanced scanning can be found in our documentation.