An ECS launch template version is compliant if its network type is set to the specified value. The default value for this parameter is VPC. This rule does not apply if no network type is specified.
Threat level
Default threat level: Low.
You can change the risk level as needed.
Detection logic
An ECS launch template version is compliant if its network type is set to the specified value. The default value for this parameter is VPC. This rule does not apply if no network type is specified.
Rule details
Parameter | Description |
Rule name | ECS launch templates should not have public network access |
Rule identifier | |
Tag | Image |
Automatic remediation | Not supported |
Rule trigger | Configuration change |
Supported resource types | ACS::ECS::LaunchTemplateVersion |
Input parameters | networkType (Default value: vpc) |