Cloud Security Rules

Find out if you have vulnerabilities that put you at risk

RULE	SERVICE GROUP
H ECS Container Insights is disabled	ECS
M ECS task definition does not limit memory usage for containers	ECS
M ECS task definition does not mount the container's root filesystem as read-only	ECS
M ECS task definition has 'NET_RAW' capability	ECS
M ECS task definition is not configured with a health check	ECS
M ECS task definition mounts sensitive host system directories	ECS
M ECS task definition uses the root user	ECS
M ECS task is not configured with a health check	ECS
M EFS in task definition does not encrypt data in transit	ECS
M Potentially sensitive variable in task definition	ECS
L ECS container definition mounts volumes with mount propagation set to "shared"	ECS
L ECS task definition does not set CPU limit for containers	ECS