- 最新
- 投票最多
- 评论最多
Hi @knut,
Thanks for posting your concern here at AWS re:Post.
So from the query I can understand that in corresponding to ECS.5 [1] you want to implement the same on Fargate Service using CDK. Please correct me if I have misunderstood your query here.
Post-investigating QueueProcessingFargateService Class, I don't see this is yet available for "ReadonlyRootFilesystem" Parameter. As it's a new change that requires time for CDK Team to review, you can always create new use-case requirement for QueueProcessingFargateService at: [2] so that development Team from CDK can have attention towards this.
Rest, if you have any follow-up queries or concerns, please feel free to raise a new Support Case at: https://support.console.aws.amazon.com/support/home
Thanks! Have an AWSome Day Ahead & Stay Safe!
相关内容
AWS 官方已更新 2 年前
Thank you for the answer. This confirmed my findings. I don't see that this is much of a risk in a QueueProcessingFargateService anyway since images are started and stopped fairly regularly. It's more the "High security risk" label in Security Hub that bothers me.
I will ignore this in Security Hub for now.