Good morning all. We have deployed Datahub on ECS + Managed service on AWS. Currently we are running the GMS, React Front End and Actions containers on ECS, but our security team is giving the following warning:

ECS.5 ECS containers should be limited to read-only access to root filesystemsThis control checks if ECS containers are limited to read-only access to mounted root filesystems. This control fails if the ReadonlyRootFilesystem parameter in the container definition of ECS task definitions is set to 'false'.

We tried to enable read only access to Root filesystems, but the containers do not run. Is there anyway we can fix this? Thank you!

We have not tested with ECS. But you can ask the team to tell what exact errors happen when they say "containers do not run"

Basically it says that something like “folder not writable”. It seems that the containers are designed to write on the root, and I think that that is the problem. I will come back with a more detailed log