https://github.com/t04glovern/aws-ecr-continuous-scan
ECR Container Image Re-Scan
https://github.com/t04glovern/aws-ecr-continuous-scan
aws ecr ecr-scan serverless vulnerability-scanners
Last synced: about 2 months ago
JSON representation
ECR Container Image Re-Scan
- Host: GitHub
- URL: https://github.com/t04glovern/aws-ecr-continuous-scan
- Owner: t04glovern
- License: apache-2.0
- Created: 2019-10-29T12:24:44.000Z (over 6 years ago)
- Default Branch: master
- Last Pushed: 2019-10-29T12:25:50.000Z (over 6 years ago)
- Last Synced: 2025-10-06T01:25:55.773Z (9 months ago)
- Topics: aws, ecr, ecr-scan, serverless, vulnerability-scanners
- Language: Go
- Size: 86.9 KB
- Stars: 1
- Watchers: 0
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# ECR Container Image Re-Scan
Based entirely on [Michael Hausenblas's implementation](https://github.com/mhausenblas/ecr-continuous-scan)
Just ported some of the functionality to use Serverless instead + removed the need for init buckets

## Serverless Deploy
```bash
serverless deploy
```
## Test
Retrieve the endpoint created for you and export a variable containing it.
```bash
# Serverless: Stack update finished...
# endpoints:
# POST - https://jn03zi6twg.execute-api.us-east-1.amazonaws.com/dev/configs
# DELETE - https://jn03zi6twg.execute-api.us-east-1.amazonaws.com/dev/configs/{id}
# GET - https://jn03zi6twg.execute-api.us-east-1.amazonaws.com/dev/configs
# GET - https://jn03zi6twg.execute-api.us-east-1.amazonaws.com/dev/summary
# GET - https://jn03zi6twg.execute-api.us-east-1.amazonaws.com/dev/findings/{id}
export ECRSCANAPI_URL="https://jn03zi6twg.execute-api.us-east-1.amazonaws.com/dev"
```
### Create the demo repo
```bash
./container_push.sh
```
### Add a configuration file
```bash
curl -s --header "Content-Type: application/json" --request POST --data @sample-config.json $ECRSCANAPI_URL/configs/
```
## Issues
You might get rate limited from the ECR Vuln scanner
