Back to All Checks
Medium ECR Regional

ECR private repositories should have tag immutability configured

NIST

Description

This control checks whether a private ECR repository has tag immutability enabled.

Remediation

To configure tag immutability for an ECR repository, refer to the Amazon Elastic Container Registry User Guide.

Steps

  1. Open the Amazon ECR console.
  2. Choose the repository.
  3. Under the Image Tag Mutability section, select 'Immutable'.
  4. Save the changes.

Compliance

NIST
Start Your Free Security Check