PRESS RELEASE
BOSTON — Nov. 6, 2023 — Aqua Safety, the pioneer in cloud native safety, right this moment introduced its open supply resolution Trivy now helps vulnerability scanning for Kubernetes elements along with Kubernetes Invoice of Supplies (KBOM) technology. Now, corporations can higher perceive the elements inside their Kubernetes atmosphere and the way safe they’re in an effort to considerably scale back threat.
Kubernetes has been extensively adopted throughout enterprises worldwide, however based on Purple Hat, greater than half of corporations are frightened about Kubernetes safety — specifically, vulnerabilities and misconfigurations. Current infrastructure scanners scan the infrastructure for misconfigurations solely and can’t analyze Kubernetes elements for vulnerabilities. With this new innovation in Aqua’s open supply resolution, Trivy is fixing this problem for the primary time.
Earlier in 2023, Aqua introduced that Trivy included KBOM technology. Very similar to a Software program Invoice of Supplies (SBOM), a KBOM is the manifest of all of the essential elements that make up your Kubernetes cluster: management aircraft elements, node elements and add-ons, together with their variations and pictures. Aqua Trivy’s Kubernetes vulnerability scanning is utilizing KBOM to assist customers perceive how their cluster safety adjustments over time, determine safety points and know when to improve cluster elements. The visibility gained from KBOM technology and element vulnerability scanning isn’t just essential for corporations working their very own Kubernetes environments. These utilizing a managed Kubernetes service additionally want this stage of visibility and safety to find out if their service suppliers are utilizing weak elements that will put them in danger.
“Simply as SBOM is essential on your utility safety, KBOM is essential to your infrastructure safety,” stated Itay Shakury, vp of open supply at Aqua Safety. “Now, with the flexibility to scan the precise Kubernetes infrastructure, along with workloads and pictures, we’re working towards the business’s first full Kubernetes vulnerability scanner. Aqua established itself as an early innovator in Kubernetes safety with profitable instruments like kube-bench and kube-hunter, and our open supply group continues to work diligently to deliver new, significant capabilities to our customers.”
Kubernetes vulnerability scanning is the newest functionality added to Trivy, the business’s hottest vulnerability and threat scanner. With practically 20,000 GitHub stars, Trivy has a thriving neighborhood of customers and contributors.
Builders can attempt Aqua Trivy’s KBOM technology right this moment to scan their cluster sources for vulnerabilities. Aqua at all times welcomes suggestions and to enhance the expertise. Extra data might be discovered within the Trivy KBOM documentation and on the Aqua weblog. Builders also can keep updated with the newest developments through the Aqua Open Supply Slack.
Moreover, all KBOM options will probably be commercially obtainable as a part of Aqua’s Kubernetes Safety Posture Administration resolution (KSPM) and as a part of the Aqua Platform in late November.
Aqua will probably be showcasing Trivy, KBOM and different innovation throughout KubeCon + CloudNativeCon Nov. 6-9 in Chicago. Cease by sales space C14 to study extra about Aqua.
About Aqua Safety
Aqua Safety sees and stops assaults throughout your complete cloud native utility lifecycle in a single, built-in platform. From software program provide chain safety for builders to cloud safety and runtime safety for safety groups, Aqua helps prospects scale back threat whereas constructing the way forward for their companies. The Aqua Platform is the business’s most complete Cloud Native Utility Safety Platform (CNAPP). Based in 2015, Aqua is headquartered in Boston, MA and Ramat Gan, IL with Fortune 1000 prospects in over 40 international locations. For extra data, go to https://www.aquasec.com.
