According to a new press release, “Portshift, a leader in cloud-native workload protection, today introduced Kubei Open Source container scanning software. Kubei is a unique open source Kubernetes runtime images scanning solution, presented to invite developer collaboration for the hardening of runtime environments. Kubei identifies which pods were built from vulnerable images or contain newly discovered vulnerabilities, then it couples the Kubernetes information with vulnerability data for quick and easy remediation.”
The release continues, “Traditionally, container scanning solutions have been used to detect vulnerabilities within the CI/CD development pipeline or within the image’s registry. This approach lacks the ability to observe running pods which were created before the image-scanning process took place. Portshift’s open source project introduces its technology to a broad community of DevOps/SRE teams involved with the deployment of containers — their orchestration, management and security. With Kubei, scanning containers during runtime ensures strong security for Kubernetes clusters.”
It goes on, “A powerful new solution for DevOps/SRE professionals, Kubei scans only images that are deployed in runtime that also include the scanning of non-registry images. It replaces the need to scan the entire images registry which contains many different versions and/or images that are not in use. The solution is easy to operate and integration with CI/CD pipeline tools is not a requirement. With Kubei: (1) The solution only scans deployed images. It provides accurate and real-time risk assessment, saving time and resources of scanning them offline. (2) All runtime images inside the cluster will be scanned, including non-registry images (whether coming from CI/CD or not), providing the organization with an extra layer of security.”
Read more at PR Web.
Image used under license from Shutterstock.com