Portshift Announces Open Source Kubei Container Runtime Scanning Software
March 23, 2020

Portshift introduced Kubei Open Source container scanning software.

Kubei is an open source Kubernetes runtime images scanning solution, presented to invite developer collaboration for the hardening of runtime environments.

Kubei identifies which pods were built from vulnerable images or contain newly discovered vulnerabilities, then it couples the Kubernetes information with vulnerability data for quick and easy remediation.

Traditionally, container scanning solutions have been used to detect vulnerabilities within the CI/CD development pipeline or within the image’s registry. This approach lacks the ability to observe running pods which were created before the image-scanning process took place. Portshift’s open source project introduces its technology to a broad community of DevOps/SRE teams involved with the deployment of containers -- their orchestration, management and security. With Kubei, scanning containers during runtime ensures strong security for Kubernetes clusters.

A powerful new solution for DevOps/SRE professionals, Kubei scans only images that are deployed in runtime that also include the scanning of non-registry images. It replaces the need to scan the entire images registry which contains many different versions and/or images that are not in use. The solution is easy to operate and integration with CI/CD pipeline tools is not a requirement. With Kubei:

1. The solution only scans deployed images. It provides accurate and real-time risk assessment, saving time and resources of scanning them offline.

2. All runtime images inside the cluster will be scanned, including non-registry images (whether coming from CI/CD or not), providing the organization with an extra layer of security.

Key capabilities of the new solution include one-click container configuration and discovery of vulnerabilities in runtime, throughout all Kubernetes clusters under management. Within minutes, Kubei summarizes and portraits all of the vulnerabilities existing in runtime deployments with an operational view. With this, DevOps will know immediately which containers have vulnerabilities, where these vulnerabilities exist (image, pod, container and namespace), and what needs to be patched or replaced.

"With the launch of Kubei, Portshift assists DevOps in maintaining development timelines, providing easy access and quick scanning of runtime (relevant) images on-demand," said Zohar Kaufman, Co-Founder and VP, R&D, Portshift. "The open-source tool couples Kubernetes information with the vulnerability data and includes context in addition to data for a much clearer picture of Kubernetes vulnerabilities in real-time."

Share this

Industry News

March 26, 2020

Redgate’s new SQL Monitor now ensures that DevOps teams can monitor and track deployments at all times.

March 26, 2020

Split Software announced a two-way data integration with Google Analytics that can instantly detect performance issues caused by new features.

March 26, 2020

Cloudreach earned the Kubernetes on Microsoft Azure advanced specialization.

March 25, 2020

Informatica updated its Intelligent Data Platform, powered by Informatica's AI-powered CLAIRE engine, with advanced intelligence and automation capabilities, enabling enterprises to accelerate cloud analytics modernization, drive better customer experiences, and properly govern and manage all their data.

March 25, 2020

Datical released Targeted Rollback capabilities for Liquibase, the rapidly growing open-source tool that helps application developers track, version and deploy database schema changes quickly and safely.

March 25, 2020

HashiCorp raised $175 million in Series E funding, at a company valuation of $5.1 billion.

March 24, 2020

Sysdig launched PromCat.io.

March 24, 2020

Sonatype announced expanded language coverage within Nexus Lifecycle to include Conan (C/C++), Composer (PHP), and RubyGems (Ruby), including the ability to create and contextually enforce policies.

March 24, 2020

Swimlane joined the Chronicle Index Partner program as part of a broader industry effort to help customers improve visibility of and response to cyber threats.

March 23, 2020

Portshift introduced Kubei Open Source container scanning software.

March 23, 2020

Perspecta achieved Amazon Web Services (AWS) DevOps Competency status.

March 23, 2020

Talend announced the availability of Talend Cloud in Microsoft Azure Marketplace, an online store providing applications and services for use on Azure.

March 19, 2020

DevOps Institute, a global member-based association for advancing the human elements of DevOps, announced eight Virtual SKILup Day micro-conferences starting April 30, 2020.

March 19, 2020

Oteemo, an enterprise DevSecOps and Cloud Native Transformation consultancy, launched an enterprise kubernetes and cloud native learning program.

March 19, 2020

Spectro Cloud, an enterprise cloud-native infrastructure company, emerged from stealth and unveiled its first product: Spectro Cloud.