Container assessment has been a major focus in InsightVM for some time now. We’ve been identifying Docker hosts and running containers in the environment, assessing container images hosted in registries, and controlling the build status as part of the software development life cycle (SDLC) with our Jenkins plugin for a while.
Taking it a step further, we’re excited to release two new features to improve the flexibility of our container assessment capabilities. Our new Container Registry Sync App and Container Image Scanner for InsightVM enables organizations using on-premises registries and CI/CD tools other than Jenkins to take advantage of InsightVM’s container assessment abilities. In this post, we’ll explain how they work to provide comprehensive end-to-end container security for fast-moving companies.
Meet the new Container Registry Sync app
The Container Registry Sync app is a Docker image that collects metadata about an image within your container registry, adding the ability to assess images stored in on-premises registries.
The Container Registry Sync can be run locally where information is sent from the container image to InsightVM for assessment. This circumvents the need to allow incoming connections from the InsightVM cloud.
You can use the Container Registry Sync to:
..
Support the originator by clicking the read the rest link below.
