The CloudFormation Resource Provider Package For Amazon ECR
This library is licensed under the Apache 2.0 License.
The CloudFormation Resource Provider Package For Amazon ECR
Home Page: https://aws.amazon.com/ecr/
License: Apache License 2.0
Add CFN properties to enable enhanced image scanning for ECR repositories
https://docs.aws.amazon.com/AmazonECR/latest/userguide/image-scanning-enhanced.html
I would like to enable enhanced image scanning through CDK. The alternative route right now is to create a CFN stack using custom resources that invoke the AWS SDK.
related: aws/aws-cdk#26536
AWS::ECR::Repository
To find the right CloudFormation Stack, where a AWS resource is defined/maintained aws:cloudformation:* built-in tags are needed. This is an important function in day-to-day business.
Resources with type AWS::ECR::Repository
, which are managed as CloudFormations Stacks, should automatically receive the aws:cloudformation:*
built-in tags / automatic default CFN AutoTags.
Furthermore those aws:cloudformation:* built-in tags must be handled by CloudFormation Drift-Detection correctly (hence, aws:cloudformation:* tags are not a drift)
When you have an AWS::ECR::Repository
resource in your stack, it does not get the built-in tags assigned: aws:cloudformation:stack-name
, aws:cloudformation:logical-id
and aws:cloudformation:stack-id
Deploy a CloudFormation stack containing this resource named above (e.g. sample from AWS docs) and check the tags on the console. You can't see aws:cloudformation:* built-in tags.
I've re-tested it right now in eu-central-1 region. No tags aws:cloudformation:*
are added to the ECS Service resource.
In the area of AWS ECS/ECR Services the resource AWS::ECS::Cluster already receiving aws:cloudformation:* auto-tags.
Furthermore, there is already an open issue in cloudformation-coverage-roadmap repo aws-cloudformation/cloudformation-coverage-roadmap#1280 since 2022.
Cross posting here for tracking.
aws-cloudformation/cloudformation-coverage-roadmap#654
As of Jul 29, 2020 ECR now supports encryption of images using AWS KMS keys.
https://aws.amazon.com/about-aws/whats-new/2020/07/ecr-supports-encryption-images-aws-kms-keys/
Please add EncryptionConfiguration property to AWS::ECR::Repository resource type.
AWS::ECR::Repository
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ecr-repository.html
EncryptionConfiguration
https://docs.aws.amazon.com/AmazonECR/latest/APIReference/API_EncryptionConfiguration.html
Question: does AWS::ECR::Repository LifecyclePolicy support AWS::NoValue
How can I pass in a number to the Policy ? the values for "LifecyclePolicyText" is a String.
Using a "!Ref" also results in a string, which fails as it needs to be a number.
ECRImageRetentionNr:
Description: >
The number of ECR Images that should be retained in an ECR Repository.
Default is 999 number of images.
Type: Number
Default: 999
Type: AWS::ECR::Repository
LifecyclePolicy:
LifecyclePolicyText: |
{
"rules": [
{
"rulePriority": 1,
"description": "Rule 1",
"selection": {
"tagStatus": "any",
"countType": "imageCountMoreThan",
"countNumber": !Ref ECRImageRetention
},
"action": {
"type": "expire"
}
}
]
}
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.