Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Discover AWS elastic container registry permissions #122

Open
saryx123 opened this issue Nov 5, 2018 · 1 comment
Open

Discover AWS elastic container registry permissions #122

saryx123 opened this issue Nov 5, 2018 · 1 comment
Labels
enhancement New feature or request

Comments

@saryx123
Copy link

saryx123 commented Nov 5, 2018

The following permissions are not being discovered via bruteforce;

"Effect": "Allow",
"Action": "ecr:GetAuthorizationToken"

as well as

"Effect": "Allow",
"Action": [
"ecr:GetAuthorizationToken",
"ecr:BatchCheckLayerAvailability",
"ecr:GetDownloadUrlForLayer",
"ecr:GetRepositoryPolicy",
"ecr:DescribeRepositories",
"ecr:ListImages",
"ecr:DescribeImages",
"ecr:BatchGetImage",
"ecr:InitiateLayerUpload",
"ecr:UploadLayerPart",
"ecr:CompleteLayerUpload",
"ecr:PutImage"

and probably others.

Consider in development roadmap.

-Alex
@SpenGietz
Copy link
Contributor

Thanks Alex, right now that module only supports S3 and EC2, but we are hoping to continue adding services in the future. I'll update this issue when that happens, although I'm not exactly sure when that may be.

@DaveYesland DaveYesland added the enhancement New feature or request label Mar 18, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@saryx123 @SpenGietz @DaveYesland