Elastic Container Registry

Table of contents

General

General

Amazon Elastic Container Registry (Amazon ECR) is a fully managed container image registry. It is integrated with ECS, EKS, and the docker CLI.

ECR How it works

Images can be public or private, and they are stored in an S3 bucket, which ensures high availability, durability, and data encryption (in-flight and at rest).

IAM policies control who and what can access each image.

Some features are:

Lifecycle policies help with managing the images;
Image scanning helps in identifying vulnerabilities. Each repository can be configured to scan on push;
Cross-Region and cross-account replication;
Image versioning, image tagging, etc.