Policy Packs
Enforce Scan on Push Is Enabled for AWS ECR Repositories

Policy Setting: AWS > ECR > Repository > Scan on Push

Policies

This policy setting is dependent on the following policy types:

Source

resource "turbot_policy_setting" "aws_ecr_repository_scan_on_push_enabled" {
resource = turbot_policy_pack.main.id
type = "tmod:@turbot/aws-ecr#/policy/types/repositoryScanOnPush"
value = "Check: Enabled"
# value = "Enforce: Enabled"
}