AWS ECS Fargate services should automatically use the latest Fargate platform version
Description
This control verifies whether Amazon ECS Fargate services are configured to automatically utilize the latest Fargate platform version.
Fargate platform versions define a specific runtime environment for Fargate task infrastructure, encompassing kernel and container runtime versions. Updates to platform versions are introduced as the runtime environment evolves, addressing kernel or operating system enhancements, feature additions, bug fixes, or security improvements. Security updates and patches are automatically applied to Fargate tasks.
Configuring ECS Fargate to use platformVersion = LATEST ensures that your workloads benefit from the latest security updates, features, and enhancements provided by AWS, reducing the risk of vulnerabilities and improving overall system resilience.
For guidance on configuring ECS platform versions, refer to the Updating a service section of the Amazon Elastic Container Service Developer Guide.
