2025 06 17

AWS – Amazon ECR enhanced scanning now surfaces image use status

Amazon Elastic Container Registry (ECR) enhanced scanning now surfaces how an image is used on Amazon Elastic Kubernetes Service (EKS) and Amazon Elastic Container Service (ECS), including last used date, the number of clusters that the image was used, and the cluster ARNs. You can use this information to prioritize vulnerability remediation for images that are actively being used.

ECR enhanced scanning is an integration with Amazon Inspector that provides vulnerability scanning for your container images. ECR enhance scanning scans your container images for both operating systems and programming language package vulnerabilities. With the launch today, you can understand whether and where your images are used on EKS and ECS. Using ECR or Inspector consoles and APIs, you can now identify when you last used an image, the number of clusters that the image was used, and which clusters are running the image with cluster ARNs. As the image use status changes, ECR enhanced scanning will continuously update the status and surface the new status as part of the enhanced scanning findings.

ECR support for image use status is available for enhanced scanning customers at no additional cost and is generally available in all AWS Commercial and AWS GovCloud (US) Regions where enhanced scanning is available. To get started with ECR enhanced scanning, visit ECR documentation.

AWS – Amazon ECR enhanced scanning now surfaces image use status

Related Posts

AWS – Amazon EC2 Auto Scaling offers the ability to filter out instance details from the DescribeAutoScalingGroups API

AWS – AWS Parallel Computing Service (PCS) is now available in the AWS GovCloud (US-East, US-West) Regions

AWS – AWS Payment Cryptography is now available in AWS Asia Pacific (Mumbai) and Asia Pacific (Osaka)