SecurityHub #335
Description
When deploying the solution "as is" SecurityHub complains about some security issues:
- ECS containers should be limited to read-only access to root filesystems
- CodeBuild project environments should not have privileged mode enabled
- ECR private repositories should have image scanning configured