Aikido can seamlessly integrate with AWS ECR. Docker image findings are extracted via the AWS Inspector2 API.
Aikido will use the findings reported by Inspector and run them through the same deduplication and de-noising engine you are familiar with. Let's dive into the details of this new functionality and how to enable it.
Connect your AWS Environment: As a prerequisite, your AWS environment must be connected to Aikido. If you have not done this already, navigate to the cloud overview in Aikido. Click on "Connect cloud" and follow the steps to get set up.
Enable AWS Inspector: Aikido can enable this for you during setup, or you can enable it manually inside of the AWS dashboard.
Start Scanning: After enabling the scanner in AWS, you can go back to Aikido and start a scan for your AWS cloud environment.
Link images: The last step is to link a cloud image to a code repository. Go to the 'Images' tab on the cloud detail page and link the images to the code repository where the source code is hosted.
Once the cloud images are linked to the code repositories, Aikido will assess and score the findings from Inspector/ECR and link them to the related cloud environment and code repository.