Aqua Safety has up to date its open-source undertaking Trivy to incorporate cloud safety posture administration (CSPM) capabilities.
Trivy is a code scanning software that appears by means of container photos, file programs, and Git repositories for safety vulnerabilities.
Now, the software can be utilized with AWS, and Aqua Safety mentioned that help for different cloud suppliers is upcoming. AWS customers can use Trivy to scan their account for misconfigurations and insider threats. This permits customers to extra simply meet safety requirements and adjust to the CIS benchmarks.
RELATED CONTENT: ITOps Occasions Open-Supply Challenge of the Week: Trivy
Customers can outline their very own guidelines or use Trivy’s group catalog, which seemingly wouldn’t be an possibility if utilizing the built-in cloud software. They’ll additionally maintain constant guidelines throughout IaC definitions and manufacturing environments.
One other advantage of this integration is customers will be capable to establish points in AWS even when the infrastructure is outlined from one other software, like Terraform or CloudFormation.
“That is the following step in our mission to simplifying cloud native safety for the group,” mentioned Itay Shakury, director of open supply of Aqua Safety. “Trivy is making cloud safety accessible and simple for everybody by means of the facility of Open Supply. We’ve been steadily releasing increasingly more safety capabilities to the group by means of Trivy, and at present we’re excited to deliver the Trivy expertise to cloud and AWS customers.”