Scanning

Vulnerability scan dashboard

Features

  • Supports all popular container registries, such as Docker, Quay etc
  • Container images are scanned as soon as they are pushed to the registry
  • Registry crawler provides a comprehensive list of images that have not been scanned
  • Real-time and continuous monitoring of images for any new vulnerabilities
  • Scans could be initiated explicitly for already created images, or as part of the integrated end-to-end CI/CD and/or PaaS workflows, such as with RedHat OpenShift and VSphere Integrated Containers
  • Detailed enterprise-wide impact analysis of any newly announced vulnerability on the containerized applications
  • Tight integration with OpenShift like PaaS workflows prevent blacklisted images from running in production or in any other critical environments

Real-time and continuous vulnerability scanning for images

Vulnerability scan sunburst for a container

Benefits

  • Complete and continuous visibility into and control over what’s in the container images and the impact of vulnerabilities
  • Intuitive and easy-to-understand presentation that could be used even by the developers to understand which packages and libraries are contributing to the vulnerabilities
  • Automatic identification of dead or unused packages in container images
  • Configurable automatic alerts on the impact of any newly announced vulnerabilities
  • Option to auto-patch vulnerable images
  • CISO dashboard for a bird’s eyeview of container images, running containers and impact of vulnerabilities
  • Downloadable reports for formal approvals and certifications
  • Zero impact to the existing CI/CD pipelines

Try Layered Insight for yourself today