Ensure there is no policy with invalid action for Amazon Elastic Container Registry (ECR) Public repository policy
MEDIUM
Description
Policy actions in Amazon Elastic Container Registry (ECR) Public use the following prefix before the action: 'ecr-public:'. Policy statements must include specific action(s). Allowing 'ecr-public:*' may lead to unauthorized access.
Remediation
In AWS Console -
Sign in to the AWS Console and go to the Amazon Elastic Container Registry (ECR) console and click on public.
Select Repositories.
Click the image repository that you want to configure. Select Permissions.
In the Permission statements, select the policy statement.