Container Image Scanner for AWS ECR
I spearheaded the creation of a Container Image Scanner for AWS ECR, aiming to provide a seamless and comprehensive security solution for our customers.
The installation was designed to be user-friendly, requiring a mere three clicks through a CloudFormation stack.
Once installed, our scanner offered an extensive security scanning feature, capable of identifying open-source vulnerabilities in both the OS and App layers of container images.
The goal was to enhance security measures and provide immediate value by detecting vulnerabilities swiftly and efficiently.
To achieve this, my team and I used Python and Go as the backend languages and designed an event-driven architecture to download, extract, and scan each container image within seconds.
We leveraged Serverless AWS services like API Gateway, Lambda functions, SNS, S3, SQS, and DynamoDB, provisioning them using Pulumi, an Infrastructure as Code (IaC) tool, to ensure optimal resource management and scalability.
Additionally, we crafted a user-friendly interface using React to elevate the user experience, making it intuitive for customers to navigate and understand their security posture better.
Skills
· Go
· AWS Lambda
· Cloud-Native Architecture
· Python
· Infrastructure as Code (IaC)
· Serverless Computing
· Team Leadership
· Amazon Web Services (AWS)