The vulnerability database is continuously updated and matched against container images in the cluster. Users will be notified as soon as any new image patch information is found without having to rescan periodically.
In-depth detection of important update patches of container images in the running environment and remote registry, taking into account the business impact of the system, the importance of assets and patches, and the impact of repair, and intelligently providing the most relevant patch repair recommendations for the business.
Users can flexibly display list data and define table display according to their needs. The system provides security scenario-based filtering, such as searching by CVE number, to help users quickly locate images and images’ security patch information.
A library of over 50,000 security patches, four major application component vulnerabilities, and five detection engines for in-depth discovery of sensitive information in images.
Conducting build file inspection, open source License inspection, software application inspection, basic image identification, etc., to standardise the image building process.
Support Oracle, Fedora, Ubuntu, Debian, OpenSUSE, Photon OS, Alpine and other major image OS, at the same time, X86/ARM structure full-stack adaptation.
