Severity Framework
CCSS (Common Configuration Scoring System) is a set of measures used to determine the severity of the rule.
Snyk CCSS
Rule category
Each rule is associated with a high-level category. For example IAM, Container, Monitoring, Logging, Network, etc.
Monitoring/ Best Practices
Is your environment affected by this misconfiguration?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsFrameworks
- Snyk IDSNYK-CC-00281
- creditSnyk Research Team
Description
ECS Container Insights will not be enabled on the cluster and performance log events will not be collected and displayed in CloudWatch.
How to fix?
Set setting.name attribute to containerInsights, and setting.value to enabled.
Example configuration:
resource "aws_ecs_cluster" "allowed" {
name = "test"
setting {
name = "containerInsights"
value = "enabled"
}
}
Set Properties.ClusterSettings.Name attribute to containerInsights, and Properties.ClusterSettings.Value to enabled.