Skip to main content

CR Instance No Any IP Access

ID: rule:aliyun:cr-instance-any-ip-access-check
Severity: high
IaC Types: ROS, Terraform

Description

Ensures Container Registry instances do not have any IP (0.0.0.0/0) in their whitelist.

Reason for Violation

Allowing any IP (0.0.0.0/0) in the whitelist exposes the container registry to potential unauthorized access from any internet user.

Recommendation

Remove 0.0.0.0/0 from the whitelist and specify specific IP ranges.

Resource Types

ROS: ALIYUN::CR::Instance
Terraform: alicloud_cr_endpoint_acl_policy

Description
Reason for Violation
Recommendation
Resource Types