dataall Enable encryption for ECR in the ecr stack

Enable encryption for ECR in the ecr stack

Open mourya-33 opened this issue 10 months ago • 1 comments

Describe the bug

Currently, the ECR repository created as part of the ECR stack is not encrypted. This is flagged by checkov as the following failure.

CheckID : CKV_AWS_136 CheckName : Ensure that ECR repositories are encrypted using KMS File : /cdk.out/assembly-dataall-pr-cicd-stack-dataall-ecr-stage/dataallprcicdstackdataallecrstageprecrstack3C1CC298.template.json:3-101 Resource : AWS::ECR::Repository.ECRRepositoryF3A3832E

How to Reproduce

run checkov scan on the ecr stack template to see the encryption check failures

Expected behavior

ECR repository should be encrypted and the checkov scan check should succeed.

Your project

No response

Screenshots

No response

OS

Mac

Python version

3.10

AWS data.all version

2.3

Additional context

No response

Apr 19 '24 14:04 mourya-33

This is a great addition, thanks for opening the issue @mourya-33

Apr 24 '24 07:04 dlpzx

dataall dataall copied to clipboard

Enable encryption for ECR in the ecr stack

Describe the bug

How to Reproduce

Expected behavior

Your project

Screenshots

OS

Python version

AWS data.all version

Additional context

dataall
dataall copied to clipboard