Overview
The Amazon ECR (Elastic Container Registry) integration allows Backline to scan your container images for security vulnerabilities. Identify and remediate security issues in your Docker images before they reach production.What You Can Do
With the ECR integration, Backline can:- Scan container images for vulnerabilities
- Analyze image layers and dependencies
- Detect outdated base images
- Track vulnerabilities across image versions
- Monitor container security compliance
Prerequisites
Before connecting ECR, ensure you have:- An AWS account with ECR repositories
- AWS credentials (Access Key ID and Secret Access Key)
- IAM permissions to access ECR
- Repositories you want to scan
Connecting ECR
1
Go to Integration Hub
Navigate to Integrations from the main menu.
2
Select ECR
Find and click on the Amazon ECR integration card.
3
Enter AWS Credentials
Provide your AWS Access Key ID and Secret Access Key.
4
Select Region
Choose the AWS region where your ECR repositories are located.
5
Test Connection
Click Test Connection to verify your credentials.
6
Save
Click Save to complete the integration.
Required IAM Permissions
Your AWS credentials need the following ECR permissions:After Connection
Once ECR is connected, Backline will:- Discover your ECR repositories
- Begin scanning container images
- Identify vulnerabilities in image layers
- Generate remediation recommendations
Image Scanning
Backline scans:- All tagged images in connected repositories
- Base image vulnerabilities
- Package and dependency vulnerabilities within containers
- Configuration issues
Large images may take several minutes to scan initially. Subsequent scans are incremental and faster.
Managing the Integration
Updating Credentials
To change AWS credentials:- Open the Integration Hub
- Click on the ECR integration
- Enter new credentials
- Test and save
Disconnecting
To remove the ECR integration:- Go to the Integration Hub
- Click on the ECR integration
- Select Disconnect
- Confirm your choice