Changing the enhanced scanning duration for images in Amazon Inspector - Amazon ECR
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Changing the enhanced scanning duration for images in Amazon Inspector

You can change the number of days that Amazon Inspector continuously scans the images in your Amazon ECR private repositories. By default, when enhanced scanning is turned on for your Amazon ECR private registry, the Amazon Inspector service continually monitors your repositories until either the image is deleted or enhanced scanning is disabled. The duration that Amazon Inspector scans your images can be changed using the Amazon Inspector settings. The available scan durations are Lifetime (default), 180 days, and 30 days. When the scan duration for a repository elapses, the scan status of SCAN_ELIGIBILITY_EXPIRED is displayed when listing your scan vulnerabilities. For more information, see Changing the Amazon ECR automated re-scan duration in the Amazon Inspector User Guide.

To change the enhanced scanning duration setting

  1. Open the Amazon Inspector console at https://console.aws.amazon.com/inspector/v2/home.

  2. In the left navigation, expand Settings and then choose General.

  3. On the Settings page, under ECR re-scan duration choose a setting, then choose Save.