AWS Certified Security - Specialty

Get started today

Ultimate access to all questions.

Quick Answer

Answer-first summary for fast verification

Answer: Use Amazon Inspector. Create inclusion rules in Amazon ECR to match repositories that need to be scanned. Push Amazon Inspector findings to AWS Security Hub.

The correct answer is A. Amazon Inspector can be configured to continuously scan ECR repositories, and inclusion rules can be set up to specify which repositories are to be scanned. Additionally, Amazon Inspector findings can be pushed to AWS Security Hub, providing a centralized dashboard for viewing these findings along with other security-related information. This solution aligns with the requirement for continual and on-push scanning, centralized visibility, and the ability to exclude specific repositories from the scanning process.

Author: LeetQuiz Editorial Team

Quick Answer

Answer-first summary for fast verification

Answer: Use Amazon Inspector. Create inclusion rules in Amazon ECR to match repositories that need to be scanned. Push Amazon Inspector findings to AWS Security Hub.

Author: LeetQuiz Editorial Team

Comments (0)

No comments yet.

An ecommerce company uses Amazon Elastic Container Service (Amazon ECS) for deploying application containers, with container images stored in Amazon Elastic Container Registry (Amazon ECR). During a security audit, the team identifies issues in certain container images. They aim to implement continuous and on-push scanning for these images, requiring a solution that centralizes scan findings in a dashboard, excluding specific repositories from scanning. Which solution meets these criteria?

Exam-Like

Last updated: February 11, 2026 at 14:03

Use Amazon Inspector. Create inclusion rules in Amazon ECR to match repositories that need to be scanned. Push Amazon Inspector findings to AWS Security Hub.

52.6%

Use ECR basic scanning of container images. Create inclusion rules in Amazon ECR to match repositories that need to be scanned. Push findings to AWS Security Hub.

26.3%

Use ECR basic scanning of container images. Create inclusion rules in Amazon ECR to match repositories that need to be scanned. Push findings to Amazon Inspector.

21.1%

Use Amazon Inspector. Create inclusion rules in Amazon Inspector to match repositories that need to be scanned. Push Amazon Inspector findings to AWS Config.