https://github.com/awsdataarchitect/ecr-vulnerability-report

Open source project for Automating ECR Vulnerability Reports with Amazon EventBridge
https://github.com/awsdataarchitect/ecr-vulnerability-report

cdk dynamodb ecr eventbridge stepfunctions

Last synced: about 2 months ago
JSON representation

Open source project for Automating ECR Vulnerability Reports with Amazon EventBridge

• Host: GitHub
• URL: https://github.com/awsdataarchitect/ecr-vulnerability-report
• Owner: awsdataarchitect
• Created: 2024-06-02T04:15:56.000Z (11 months ago)
• Default Branch: main
• Last Pushed: 2024-07-22T04:47:22.000Z (9 months ago)
• Last Synced: 2024-07-22T05:49:41.865Z (9 months ago)
• Topics: cdk, dynamodb, ecr, eventbridge, stepfunctions
• Language: TypeScript
• Homepage: https://medium.com/@vivek-aws/automating-ecr-vulnerability-reports-with-amazon-eventbridge-part-1-new-aws-sdk-integration-acf7b659148d
• Size: 241 KB
• Stars: 0
• Watchers: 1
• Forks: 1
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • Changelog: CHANGELOG.md

Awesome Lists containing this project

README

        
# Open source project for Automating ECR Vulnerability Reports with Amazon EventBridge

Learn by using AWS-CDK, how to implement this automation without any AWS Lambda function code

# Architecture Diagram

![Alt text](./ecr-vuln-3.drawio.png?raw=true "Automating ECR Vulnerability Reports with Amazon EventBridge")

For more details on how to deploy the infrastructure and the solution details, please refer to the Blog Posts:

* [Part 1: New AWS SDK Integration Feature of AWS Step Functions with DynamoDB](https://vivek-aws.medium.com/automating-ecr-vulnerability-reports-with-amazon-eventbridge-part-1-new-aws-sdk-integration-acf7b659148d).

* [Part 2: Sending Notifications for High Severity Findings](https://vivek-aws.medium.com/automating-ecr-vulnerability-reports-with-amazon-eventbridge-part-2-sending-notifications-for-0c36ad1e910e).

* [Part 3: Fetching Detailed Vulnerability Information](https://vivek-aws.medium.com/automating-ecr-vulnerability-reports-with-amazon-eventbridge-part-3-fetching-detailed-482b03f63ceb).

* [Part 4: Leveraging Enhanced Inspector Scanning](https://vivek-aws.medium.com/automating-ecr-vulnerability-reports-with-amazon-eventbridge-part-4-leveraging-enhanced-f1e279bee07a).

The `cdk.json` file tells the CDK Toolkit how to execute your app.

## Useful commands

* `npm run build`   compile typescript to js

* `npm run watch`   watch for changes and compile

* `npm run test`    perform the jest unit tests

* `npx cdk deploy`  deploy this stack to your default AWS account/region

* `npx cdk diff`    compare deployed stack with current state

* `npx cdk synth`   emits the synthesized CloudFormation template