ecr-scan-image icon indicating copy to clipboard operation
ecr-scan-image copied to clipboard

Published 20 hours ago verified publisher icon alexjurkiewicz

scan on push deprecated

Open donfirst opened this issue 3 years ago • 5 comments

AWS introduced a scanning policy for ECR. You can find that feature here AWS ACCOUNT-> ECS->REPOSITORIES- PRIVATE REGISTRY SCANNING

The old one scan on push depracated

donfirst avatar May 11 '22 14:05 donfirst

How do you propose this action should work?

On Thu, 12 May 2022 at 00:03, donfirst @.***> wrote:

AWS introduced a scanning policy for ECR. You can find that feature here AWS ACCOUNT-> ECS->REPOSITORIES- PRIVATE REGISTRY SCANNING

The old one scan on push depracated And this git action method doesn't work when scan on push is disabled

— Reply to this email directly, view it on GitHub https://github.com/alexjurkiewicz/ecr-scan-image/issues/22, or unsubscribe https://github.com/notifications/unsubscribe-auth/AAC4U5JI6AMUMQV5VZ3NETDVJO43NANCNFSM5VVBYKVA . You are receiving this because you are subscribed to this thread.Message ID: @.***>

alexjurkiewicz avatar May 12 '22 02:05 alexjurkiewicz

Sorry for the late answer:

  1. log in to was 2)in the service search. - put ecs 3)In the ecs console click into Repositories ( AMAZON ECR SECTION)
  2. Choose a private registry ( the first one - the top one on the right side menu)
  3. choose the scanning for basic scanning, the github action works but if you will switch to Enhanced scanning

and enable "Scan on push all repositories"

You would be able to see the error from GitHub action

I believe that this GitHub action should work exactly as it's worked now :-).Enhanced scan gives much more information

Best Regards Pete

donfirst avatar May 16 '22 16:05 donfirst

Ran into the same issue. I am using Enhanced scanning

##[debug]Entering main
##[debug]Repository:MASKED, Tag:MASKED, Ignore list:
##[debug]Checking for existing findings
Requesting image scan
Error: This feature is disabled

bogdannazarenko avatar Jul 23 '22 15:07 bogdannazarenko

@alexjurkiewicz I think by simply removing the following startScan https://github.com/alexjurkiewicz/ecr-scan-image/blob/master/index.js#L173 would solve this. Are you still maintaining this project? Will you approve a pull request?

bogdannazarenko avatar Jul 28 '22 17:07 bogdannazarenko

Yes I would!

On Fri, 29 July 2022, 03:29 Bogdan Nazarenko, @.***> wrote:

@alexjurkiewicz https://github.com/alexjurkiewicz I think by simply removing the following startScan https://github.com/alexjurkiewicz/ecr-scan-image/blob/master/index.js#L173 would solve this. Are you still maintaining this project? Will you approve a pull request?

— Reply to this email directly, view it on GitHub https://github.com/alexjurkiewicz/ecr-scan-image/issues/22#issuecomment-1198436135, or unsubscribe https://github.com/notifications/unsubscribe-auth/AAC4U5J5C3PUEUUDRLE2OOLVWK7PVANCNFSM5VVBYKVA . You are receiving this because you were mentioned.Message ID: @.***>

alexjurkiewicz avatar Jul 28 '22 20:07 alexjurkiewicz