Loading…
Attending this event?
Virtual Event
August 17–August 20, 2020
Learn More and Register to Attend This Event

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for KubeCon + CloudNativeCon Europe 2020 - Virtual to participate in the sessions. If you have not registered but would like to join us, please register here.

Please note: This schedule is automatically displayed in Central European Summer Time (CEST). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date." The schedule is subject to change.
Back To Schedule
Tuesday, August 18 • 14:30 - 15:05
Handling Container Vulnerabilities with Open Policy Agent - Teppei Fukuda, Aqua Security

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

A vulnerability scanner for containers doesn’t help a user decide how to handle vulnerabilities. For example, even if a critical vulnerability is found, some organizations may accept the risk of it. The policy for vulnerability handling depends on the organization, and in many cases, the person in charge has to make a manual judgement based on this policy every time. This is time-consuming.

This talk demonstrates how to automatically handle vulnerabilities detected by a scanner using OPA.
- The vulnerabilities found by a scanner in CI are handled automatically by Open Policy Agent
- Applying custom policy, OPA shows users which vulnerabilities to address

This automatic vulnerability handling in CI will be demonstrated live, along with Trivy, which is an open source vulnerability scanner for containers. The same policy handling model could be used with any scanner.

Speakers
avatar for Teppei Fukuda

Teppei Fukuda

Open Source Engineer, Aqua Security
Teppei Fukuda is an original developer of Trivy and a maintainer of Vuls. He works at Aqua Security as an Open Source Software engineer.He has a wealth of software engineering experience working on network and security. Away from the work, he loves Manga. His dream is to read all... Read More →


Tuesday August 18, 2020 14:30 - 15:05
Virtual
Feedback form isn't open yet.