Container image quarantine is disabled Affecting Container service in Azure

Snyk CCSS

Containers / Best Practices

Is your enviroment affected by this misconfiguration?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications

Frameworks

CIS-Controls CSA-CCM

Snyk ID SNYK-CC-00517
credit Snyk Research Team

Report a new misconfiguration Found a mistake?

Description

Container images are not scanned for malware.

How to fix?

Set properties.policies.quarantinePolicy.status to enabled.

Terraform

Resource: azurerm_container_registry

References

How do I enable automatic image quarantine for a registry?