Attending this event?
Amsterdam, The Netherlands
August 13–August 16, 2020

Learn More and Register to Attend This Event
Saturday, August 15 • 17:20 - 17:55
Handling Container Vulnerabilities with Open Policy Agent - Teppei Fukuda, Aqua Security

Sign up or log in to save this to your schedule and see who's attending!

A vulnerability scanner for containers doesn’t help a user decide how to handle vulnerabilities. For example, even if a critical vulnerability is found, some organizations may accept the risk of it. The policy for vulnerability handling depends on the organization, and in many cases, the person in charge has to make a manual judgement based on this policy every time. This is time-consuming.

This talk demonstrates how to automatically handle vulnerabilities detected by a scanner using OPA.
- The vulnerabilities found by a scanner in CI are handled automatically by Open Policy Agent
- Applying custom policy, OPA shows users which vulnerabilities to address

This automatic vulnerability handling in CI will be demonstrated live, along with Trivy, which is an open source vulnerability scanner for containers. The same policy handling model could be used with any scanner.

avatar for Teppei Fukuda

Teppei Fukuda

Open Source Engineer, Aqua Security
Teppei Fukuda is an original developer of Trivy and a maintainer of Vuls. He works at Aqua Security as an Open Source Software engineer.He has a wealth of software engineering experience working on network and security. Away from the work, he loves Manga. His dream is to read all... Read More →

Saturday August 15, 2020 17:20 - 17:55
Feedback form isn't open yet.

Attendees (78)

Twitter Feed