Aqua Blog

Image Vulnerability Scanning

Applying Multiple Security Policies to Images in Your Pipeline - Blog Banner (1).png

Improve DevOps Processes: Multiple Security Policies Applied to Images

When it comes to securing containerized applications, the first item on everyone’s agenda is to ensure that only trusted images are running in your environment, based on security and compliance policies. And for good reason too. This is by far the most effective preventive measure you can take to protect your …

Continue reading ›
Grafeas and Image Vulnerability Scanning

Grafeas and Image Vulnerability Scanning

A couple of months ago Aqua Security were part of a group of companies supporting the launch of Grafeas, an open source API initially introduced by Google that allows users to manage and query metadata about software artifacts. We wrote an article about our plans to support Grafeas and now it’s time to see it in …

Continue reading ›
blog AWS PrivateLink.png

Image Scanning in VPCs with Aqua and AWS PrivateLink

Amazon Web Services announced today at re:Invent an to a recent feature PrivateLink, that enables AWS Virtual Private Cloud customers to consume apps outside their VPCs through service endpoints, using their own private IP addresses and security groups. This is a non-trivial task since VPCs are made to be isolated, …

Continue reading ›
blog-pps.png

How Aqua Scans Container Images On-Demand From The AWS Marketplace

Today we announced the availability of a new offering on AWS - our on-demand, pay-per-scan security scanner for container images is now available in the AWS Marketplace. The scanner is a full-featured version of Aqua's image scanning capabilities found in the Aqua Container Security Platform, but with a licensing …

Continue reading ›
Container Security in The Enterprise Survey- Detecting Vulnerabilities in Images and Secrets Management Are Top Focus Areas – For Now (2).png

Survey Reveals: Detecting Vulnerabilities in Images and Managing Secrets Are Top Focus

Last month at DockerCon Europe we learned that container adoption is rising to a whole new level with 24 billion container downloads and 77K% growth in Docker job listings. This is when Docker also announced that it now supports Kubernetes. Combine this with the recent news from The Cloud Native Computing …

Continue reading ›
grafeas_bg.png

Governance and Control for The Container Supply Chain Using Aqua Security and Google Grafeas

Securing software supply chains requires strong governance and rich data, both to help ensure that only approved components are executed on production machines.

Continue reading ›
Kubernetes Metadata and manifesto

Kubernetes Metadata and Manifesto

We recently released the first prototype of Manifesto, a tool for storing metadata alongside a container image. Metadata can hold information about software that can change even if the software itself doesn’t, and we can use this information to create powerful automation tools.

Continue reading ›
seattle-kubernetes.jpg

Running a Security Service in Google Cloud - Real World Example

Right after DockerCon, I presented at the Kubernetes meetup in Seattle. 

Continue reading ›
the_known_knowns.jpg

The known knowns - the importance of ongoing security scans for containers

A month ago we introduced Peekr, Scalock’s free security scanner for container images.

Continue reading ›