ECS Fargate services should automatically use the latest Fargate platform version

ecs
이 페이지는 아직 영어로 제공되지 않습니다. 번역 작업 중입니다.
현재 번역 프로젝트에 대한 질문이나 피드백이 있으신 경우 언제든지 연락주시기 바랍니다.

Description

This control verifies whether Amazon ECS Fargate services are configured to automatically utilize the latest Fargate platform version.

Fargate platform versions define a specific runtime environment for Fargate task infrastructure, encompassing kernel and container runtime versions. Updates to platform versions are introduced as the runtime environment evolves, addressing kernel or operating system enhancements, feature additions, bug fixes, or security improvements. Security updates and patches are automatically applied to Fargate tasks.

Configuring ECS Fargate to use platformVersion = LATEST ensures that your workloads benefit from the latest security updates, features, and enhancements provided by AWS, reducing the risk of vulnerabilities and improving overall system resilience.

Remediation

For guidance on configuring ECS platform versions, refer to the Updating a service section of the Amazon Elastic Container Service Developer Guide.

PREVIEWING: aliciascott/DOCS-9725-Cloudcraft