Aqua (formerly named Scalock)is rolling out enhancements to its Container Security Platform, including:
- A native Jenkins plug-in -- adds an Aqua Security step to the CI pipeline that enables organizations to automate container image security scanning, report within the CI/CD tool on vulnerabilities found, and allow/disallow the use of images according to policy.
- Integration with HPE’s next generation application lifecycle management (ALM) solution, Octane, allowing development teams to view how their pipelines have fared in security testing, and to set rules as to what constitutes a “pass” mark.
- Environment variables encryption -- protects container “secrets” by encrypting environment variables. As images are updated, pushed and pulled from the registry, any sensitive data (such as passwords) – commonly referred to in developer circles as “secrets” - are automatically encrypted.