Ensure that unused or outdated artifacts are cleaned up according to defined policies to manage storage effectively and reduce security risks associated with outdated versions.
Devtools / Container Registry / Controls / DEV
Implement Cleanup Policies for Artifacts
CCC.CntrReg.CN02 · Resource
Related Capabilities
| ID | Title | Description |
|---|---|---|
| CCC.Core.CP18 | Resource Versioning | The service automatically assigns versions to child resources which can be used to preserve, retrieve, and restore past iterations. |
Related Threats
| ID | Title | Description |
|---|---|---|
| CCC.Core.TH14 | Older Resource Versions are Used | Running older versions of child resources can expose the system to known vulnerabilities that have been addressed in more recent versions. If the version identifier is detected by an attacker, it may be possible to exploit these vulnerabilities to compromise the confidentiality, integrity, or availability of the system and its data. |
Assessment Requirements
| ID | Text | Applicability |
|---|---|---|
| CCC.CntrReg.CN02.AR01 | Confirm that artifacts older than the specified retention period are automatically deleted from the registry. | tlp-red, tlp-amber |