Skip to main content

Amazon ECR

Amazon Web Services

Integrates with Amazon Elastic Container Registry (ECR) to inventory the private container-image repositories across the configured AWS accounts and regions. For each repository the connector reads its configuration (image tag mutability, scan-on-push, encryption type and KMS key) and its exposure surface — the resource-based repository policy — so downstream analysis can flag publicly pullable repositories. The connector enumerates repositories region by region via the ECR DescribeRepositories API and emits one Brinqa object per repository.

Data retrieved from Amazon ECR

Connector ObjectRequiredMaps to Data Model
EcrRepositoryYesCloud Resource
note

For detailed steps on how to view the data retrieved from Amazon ECR in the Brinqa Platform, see How to view your data.