Skip to content
This repository has been archived by the owner on Dec 10, 2021. It is now read-only.
/ terraform-aws-ecr-scanner Public archive
forked from telia-oss/terraform-aws-ecr-scanner

Terraform AWS module for regular ECR vulnerability scanning and notification to Slack.

License

MIT license
0 stars 9 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

animoto/terraform-aws-ecr-scanner

BranchesTags
 
 

Repository files navigation

AWS ECR Vulnerability Scaning Terraform module

================================================

The module will trigger vulnerability scanning on all images in account ECR and will report the results to Slack channel.

Architecture

The module will deploy CloudWatch rule to shcedule the scan, Step Function to orchestrate the lamgdas, and two lambda functions. One for triggering the scan and second to read the results and report the outcame.

Basic usage

module "ecr-regular-scanning" {
  source = "<module path>"

  slack_channel = "<slack_channel_name>"
  slack_webhook_url = "<slack_webhook>"

}

You can set the levels of vulnerability, you want to get notified by changing risk_levels variable.

Default value is: "HIGH, CRITICAL"

You can get alarms for the following levels: HIGH, MEDIUM, INFORMATIONAL, LOW, CRITICAL, UNDEFINED.

About

Terraform AWS module for regular ECR vulnerability scanning and notification to Slack.

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

2 tags

Packages

No packages published

Languages

  • HCL 56.0%
  • Python 44.0%