Share this page!

Enter URL or ID to Unroll

You can paste full URL like: https://x.com/threadreaderapp/status/1644127596119195649
or just the ID like: 1644127596119195649

How to get URL link on X (Twitter) App

  1. On the Twitter thread, click on or icon on the bottom
  2. Click again on or Share Via icon
  3. Click on Copy Link to Tweet
  4. Paste it above and click "Unroll Thread"!
  5. More info at Twitter Help
View Regular
Itay Shakury Profile picture
Itay Shakury
@itaysk
VP Open Source @aquasec | Building @AquaTrivy @AquaTracee, and more | @Apple rants | Apparently AI stuff

Aug 6, 2022, 11 tweets

This month's (July 22) updates from @AquaSecTeam Open Source Team - features, content, news and more 🧵
(P.S We're also making future updates available via a newsletter, details at the end of the thread)

You already know Trivy could always generate #SBOM, but now it can also *scan SBOM* 😯 This means it doesn't need to analyze the container for every scan, just once when generating an SBOM, and then just match it with vulnerabilities database. aquasecurity.github.io/trivy/v0.30.4/…

Support for new platforms: Amazon Linux 2022, pnpm, improved .NET Core, and more..
aquasecurity.github.io/trivy/v0.30.4/…

🆕 License scanning 👩‍⚖️ In addition to showing license of detected packages, there's a new full file scan for license files or headers, that classifies results into actionable list (this is based on the excellent @GoogleOSS License classifier 🙏)
aquasecurity.github.io/trivy/v0.30.4/…

There's a new @AzureDevOps extension for Trivy! Tell us what you think about it marketplace.visualstudio.com/items?itemName…

Trivy Operator has a initial support for #Kubernetes RBAC assessment 👮‍♀️ Check that your roles and permissions are not exposing you
aquasecurity.github.io/trivy-operator…

Did you know about our open source project Postee? It's a security alert management tool that can receive events as a webhook, and route to preferred destination based on your rules. e.g, Tracee makes a detection 🚨, post message in slack channel 🔔
github.com/aquasecurity/p…

Postee can also *respond* to events by invoking an action to remediate the incident. Postee's actions documentation lists all available actions: aquasecurity.github.io/postee/v2.7.2/…

If you want to learn more about Postee, here's @simarpreet7 Postee introduction from DevSecCon

🎥 New videos in the Aqua Open Source YouTube channel:
- Using Prometheus with Trivy Operator
- Configuring Trivy scans using config file
- @josedonizetti sharing his journey with Open Source
youtube.com/c/AquaSecurity…

Thanks and see you next time! 📩 If you've made it this far, you might want to subscribe to receive the next update by email: info.aquasec.com/open-source-ne…

Share this Scrolly Tale with your friends.

A Scrolly Tale is a new way to read Twitter threads with a more visually immersive experience.
Discover more beautiful Scrolly Tales like this.

Keep scrolling