ARMO, an Israeli software development company for cyber security, has announced that it will hand over its security scanner Kubescape to the Cloud Native Computing Foundation (CNCF) as an open source project. The DevSecOps tool, designed to secure Kubernetes clusters and CI/CD pipelines, is now available as a CNCF sandbox project to the entire cloud-native community for further development and integration with other cloud-native tools.
Kubernetes security from risk analysis to compliance
In multi-cloud Kubernetes environments, the Kubescape platform covers tasks such as risk analysis, security, compliance and checking for any misconfigurations according to frameworks such as NSA-CISA, MITER ATT&CK or the CIS benchmark. The automated scans can be configured by DevSecOps teams and platform engineers via a command line interface (CLI) and executed within their IDE, their CI-CD pipelines and the Kubernetes clusters. Kubescape provides the results of the scans in different formats, including JSON and Junit XML, but also HTML and PDF.
Overview of the application areas for Kubescape.
As an independent tool, Kubescape is currently available in version 2.0.182 under the Apache 2.0 license available on GitHub. It is also the basis of the ARMO Platform, which is tailored to enterprise customers as an on-premises installation or software-as-a-service with full enterprise support. In addition to a comprehensive user interface, the ARMO Platform offers a comprehensive DecSecOps dashboard and preconfigured integrations of third-party tools such as Jira and Slack. ARMO provides its platform in three license variants: as a paid team or enterprise version and as a permanently free Community Edition.
Further information on the open source security scanner Kubescape and the ARMO Platform can be found here in the company’s official announcementin the Kubescape repository on GitHub as well as on the ARMO website.
(map)
