Currently, we are running a preview program for “Secure the Build”. The scope for this program includes the introduction of two major new functionalities:
Vulnerability Scanning – Aqua Vulnerability Scanning is a service that scans container images for Known Vulnerabilities (CVEs) to allow security teams to assess potential risks and mitigate them. The service engine is based on Aqua’s popular opensource trivy project.
Dynamic Threat Analysis – Aqua Dynamic Threat Analysis (DTA) is the industry’s first container sandbox solution to dynamically assess the unknown risks of container images before they run. Aqua DTA runs container images in an isolated sandbox environment that monitors and detects indicators of compromise such as container escapes, malware, crypto miners, code injection backdoors, network anomalies and more.
You can apply to the Secure the Build - Preview Program right now.