Configuration template to create an Amazon ECR repository with native image vulnerability scanning enabled. Customizable settings include Repository Name, Image Immutability, Encryption At-Rest, and Vulnerability Scan On-Push

This template creates an Amazon Elastic Container Registry (Amazon ECR) repository named `test-repository`. The repository policy allows the users `Bob` and `Alice` to push and pull images.

This template creates a replication configuration for a private registry in a source Region. The replication configuration specifies that the contents of the registry should be replicated to the `us-east-2` and `us-west-1` Regions within the same account.

This template creates an AWS::ECR::RegistryPolicy resource that specifies a private registry policy in the us-west-2 region. The policy grants permission for account 210987654321 to create repositories and replicate their contents to your private registry.

This template creates a pull through cache rule that caches repositories with the name prefix `my-ecr` from the Amazon ECR Public registry into your private registry.

This template creates an Amazon Elastic Container Registry Public (Amazon ECR Public) repository. The repository allows users to push and pull Docker images, OCI images, and OCI compatible artifacts. The example specifies a public repository named 'test-repository' with catalog data that includes usage text, about text, supported operating systems, supported architectures, and a repository description.

Creates an ECR lifecycle policy document to manage the lifecycle of images in an ECR repository based on tags and count conditions.

This template creates an ECR lifecycle policy to expire untagged images older than 14 days.

This template manages an ECR lifecycle policy to keep the last 30 images tagged with a prefix 'v'.

Configures an AWS Elastic Container Registry policy to allow image replication.

Configures an AWS ECR with enhanced scanning, applying multiple rules for different scan frequencies and repository filters.

Sets up a replication configuration for an AWS Elastic Container Registry to replicate to the first available region.

Creates an AWS ECR repository and attaches a policy document to it, allowing specified actions for a given AWS principal.

Creates a public AWS Elastic Container Registry (ECR) repository named 'bar' with detailed catalog data and tags.

Creates an AWS Elastic Container Registry Public repository and applies a custom access policy to it.

A CloudWatch Event Rule that triggers when each ECR vulnerability image scan is completed. The Event Rule can be used to trigger notifications or remediative actions using AWS Lambda.

A Config rule that checks if a private Amazon Elastic Container Registry (ECR) repository has image scanning enabled. The rule is NON_COMPLIANT if image scanning is not enabled for the private ECR repository.

A Config rule that checks if a private Amazon Elastic Container Registry (ECR) repository has image scanning enabled. The rule is NON_COMPLIANT if image scanning is not enabled for the private ECR repository.

A Config rule that checks if a private Amazon Elastic Container Registry (ECR) repository has tag immutability enabled. This rule is NON_COMPLIANT if tag immutability is not enabled for the private ECR repository.