Adopting a container-based platform is the primary way development teams are streamlining their work and implementing secure DevOps. Pulling down a publicly available container image saves a lot of image preparation time. Automated toolchains also enable teams to develop and deploy innovative new apps more quickly, delivering frequent updates to customers. Safeguarding data associated with those […]
We announced the launch of the Vulnerability Advisor (VA) service for IBM Containers at DockerCon 2015. Since then, VA has been continuously scanning thousands of customer images daily and reporting to our users discovered security issues on their containers in several dimensions, including vulnerabilities, compliance issues, security misconfigurations, and malware findings. In the current version of VA, a vulnerability assessment report includes the list of packages which are affected by known vulnerabilities. By checking this report, the user can take action to remediate issues by updating/reconfiguring/disabling discovered vulnerable packages.
We'll take a look at how Vulnerability Advisor (VA) helps discover critical security holes in your containerized applications.
Vulnerability Advisor (VA) discovers security, compliance, and configuration issues with your containerized apps throughout their DevOps life cycle. To further extend VA coverage, we are introducing file-based malware detection.
Vulnerability Advisor (VA) is a component in the IBM Bluemix Container Service. It's a security management tool that can be used use to identify and manage vulnerabilities and configuration best practices for Docker images and Docker instances.
Vulnerability Advisor reports provide a convenient way of quickly knowing if it’s safe to deploy an image in Bluemix. But what if it's already running? This post introduces the Live-scanner service for evaluating running containers in Bluemix.