Answer: The IAM permissions are wrong for the CodeBuild service

Overall explanation Correct option: The IAM permissions are wrong for the CodeBuild service You can push your Docker or Open Container Initiative (OCI) images to an Amazon ECR repository with the docker push command. Amazon ECR users require permission to call ecr:GetAuthorizationToken before they can authenticate to a registry and push or pull any images from any Amazon ECR repository. Amazon ECR provides several managed policies to control user access at varying levels Incorrect options: The ECR repository is stale, you must delete and re-create it - You can delete a repository when you are done using it, stale is not a concept within ECR. This option has been added as a distractor. CodeBuild cannot talk to ECR because of security group issues - A security group acts as a virtual firewall at the instance level and it is not related to pushing Docker images, so this option does not fit the given use-case. The ECS instances are misconfigured and must contain additional data in /etc/ecs/ecs.config - The error Authorization is an indication that there is an access issue, therefore you should not look at your configuration first but rather permissions.

Author: LeetQuiz Editorial Team