Topic 1 Question 312
A company uses Amazon Elastic Container Registry (Amazon ECR) private registries to store container images.
A DevOps team needs to ensure that the container images are regularly scanned for software package vulnerabilities.
Which solution will meet this requirement?
Enable enhanced scanning for private registries in Amazon ECR.
Enable basic continuous scanning for private registries in Amazon ECR.
Create an AWS System Manager Automation document to scan images by using the AWS SDK. Configure the Automation document to run when a new image is pushed to an ECR registry.
Create an AWS Lambda function that scans all images in Amazon ECR by using the AWS SDK. Create an Amazon EventBridge rule to invoke the Lambda function each day.
ユーザの投票
コメント(1)
- 正解だと思う選択肢: A
Amazon ECR offers two levels of image scanning: 1. Basic Scanning: Detects vulnerabilities when images are pushed to the repository. 2. Enhanced Scanning: Provides continuous scanning of images, including detailed reports and automatic rescans when vulnerabilities are published.
👍 3phu02982024/11/26
シャッフルモード