Our great sponsors
-
Enable container image scanning in your CI/CD phase to catch known vulnerabilities using tools like clair or Anchore.
-
anchore-engine
A service that analyzes docker images and applies user-defined acceptance policies to allow automated container image validation and certification
Enable container image scanning in your CI/CD phase to catch known vulnerabilities using tools like clair or Anchore.
-
Scout APM
Less time debugging, more time building. Scout APM allows you to find and fix performance issues with no hassle. Now with error monitoring and external services monitoring, Scout is a developer's best friend when it comes to application development.
-
Like any other software, Kubernetes also has bugs and issues. And from time to time, there might be a high severity bug that calls for a CVE. Hence, it's an excellent idea to keep the Kubernetes version up to date on the server and the CLI client. You can check the Kubernetes security and disclosure information website to see if there are known security vulnerabilities for your Kubernetes version. If you are using a managed PaaS, it should be pretty easy to upgrade, and for on-prem installations, there are tools like kOps, kubeadm, and so on, that makes it easy to upgrade clusters.
-
docker-bench-security
The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in production.
Use Docker Bench for Security to audit your container images
Related posts
- How to leverage image vulnerability scanning on AWS ECR using a fully automated solution
- Clair V4 – General Availability
- Docker-Compose "Command"... How to recreate in Kubernetes?
- Docker-Compose "Command"... How to recreate in Kubernetes?
- Kubernetes Multi-Cluster Part 2: Managing the Cluster Lifecycle