Vulnerability Findings (Image Assurance)

CloudGuard creates Vulnerability findings for ContainerClosed A lightweight and portable executable image that contains software and all of its dependencies. Containers decouple applications from underlying host infrastructure to make deployment easier in different cloud or OS environments, and for easier scaling. images based on the assigned policy.

CloudGuard automatically creates a policy with a default Image Assurance ruleset for applicable clusters. If the default policy is sufficient, no more actions are necessary. If the onboarded environments is part of an Organizational Unit with an Image Assurance policy, no default policy is associated with the environment.

Categories of Findings

Image Assurance finds different types of findings grouped in the categories:

  • CVE - Common Vulnerabilities and Exposures

  • MaliciousIP - For more details, see Malicious IP Classification

  • MaliciousFile - Malware

  • InsecureCode

  • InsecureContent - Credential leakage

    Note - This feature is in Early Availability.

  • ImageScan - Indicates that the number of issues or severity of the issues found on an image exceeds a preconfigured threshold. See Image Scan Findings

  • Package - Package license, package info, and CVEs

Details of Findings

The fields in Image Assurance findings are almost the same as other fields in the finding details (see Events).

Fields for KubernetesClosed Kubernetes, often abbreviated as “K8s”, orchestrates containerized applications to run on a cluster of hosts. images:

More Links