turbot/aws_compliance

Query: ecr_repository_image_scan_on_push_enabled

Usage

powerpipe query aws_compliance.query.ecr_repository_image_scan_on_push_enabled

Steampipe Tables

SQL

select
arn as resource,
case
when image_scanning_configuration ->> 'ScanOnPush' = 'true' then 'ok'
else 'alarm'
end as status,
case
when image_scanning_configuration ->> 'ScanOnPush' = 'true' then title || ' scan on push enabled.'
else title || ' scan on push disabled.'
end as reason,
region,
account_id
from
aws_ecr_repository;

Controls

The query is being used by the following controls: