top of page
< Back

AWS Foundational Security Best Practice

ECS.8

Secrets should not be passed as container environment variables

Severity

Cloud Platforms

Resources

HIGH

AWS

Amazon Elastic Container Service

This control checks if the key value of any variables in the ‘environment’ parameter of container definitions includes - AWS_ACCESS_KEY_ID; AWS_SECRET_ACCESS_KEY; or ECS_ENGINE_AUTH_DATA.

6pl org white ai logo.png

(C) Copyright 2023 6PILLARS CLOUD AUTOMATION PTY LTD

bottom of page