Abstract image of a woman sitting on books and studying on a laptop

Discovering and Fixing Dependency Vulnerabilities for Kubernetes apps with Snyk and Codefresh

Codefresh, profile picture
Codefresh

The document discusses the importance of discovering and fixing dependency vulnerabilities in Kubernetes applications using Snyk and Codefresh tools. It highlights the risks associated with open source software, noting a significant increase in vulnerabilities, and emphasizes the need for integrated security practices throughout the development pipeline. The document also provides resources and links for further exploration of automated scanning techniques to enhance application security.

Technology
Related topics:
CI/CD
1 of 14
Downloaded 10 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
Discovering and Fixing Dependency Vulnerabilities for Kubernetes apps with Snyk and Codefresh Antoine Arlaud, Snyk & Dan Garfield, Codefresh
Dan Garfield Chief Evangelist
Antoine Arlaud Figure Stuff Out Engineer
Open Source Is just awesome
A Small Portion of Your App is Your Code SOFTWARE STACK Custom Code “Your” application Libraries Open source code Base Image Basic OS with associated software packages
SOFTWARE STACK Custom Code “Your” application Libraries Open source code Base Image Basic OS with associated software packages +53% Vulnerabilitie s Found in OSS YoY Source: https://www.prnewswire.com/news-releases/open-source-vulnerabilities-soar-a n-additional-40-percent-in-2017-300556046.html
SOFTWARE STACK Custom Code “Your” application Libraries Open source code Base Image Basic OS with associated software packages
Pipelines and Automation Ships your code seamlessly
Containers New deliverables for dev teams
Security Is everyone’s responsibility
Let’s bake this in Both App sec and OS Sec
Try it: https://github.com/snyk-playground/codefresh-pipeline-snyk -app-docker-scan OUR APP PIPELINE Commit Dependency Scan Docker Build Image Scan App Build Push to Dockerhub
Codefresh Plugins Code Scan Scan for vulnerabilities packages in Go, NPM, Java, and many more. Docker Scan Finds vulnerabilities in RPM, Debian, and Alpine Package Managers Try it: https://github.com/snyk-playground/codefresh-pipeline-snyk -app-docker-scan
T Get 120 FREE builds/month Codefresh.io Learn more at snyk.io

More Related Content

PPTX
Ciao: Continuous Integration for Apps on OpenStack
Everett Toews
 
PDF
Delivery pipelines at Symphony Talent - Present and Future
Nathan Jones
 
PPTX
Don’t Ignore GitHub Security Alerts, Automate Them Into Your Workflow.
Ashley Wolf
 
PDF
Securing containers by Breaking In - Liran Tal - DevSecCon Tel Aviv 2019
Liran Tal
 
PDF
Security in serverless world
Yan Cui
 
PDF
Professional iOS development
Aline Borges
 
PDF
Monkey talk
Confiz
 
PPTX
Test Design for Continuous Integration and Delivery (2020)
Melissa Benua
 
Ciao: Continuous Integration for Apps on OpenStack
Everett Toews
 
Delivery pipelines at Symphony Talent - Present and Future
Nathan Jones
 
Don’t Ignore GitHub Security Alerts, Automate Them Into Your Workflow.
Ashley Wolf
 
Securing containers by Breaking In - Liran Tal - DevSecCon Tel Aviv 2019
Liran Tal
 
Security in serverless world
Yan Cui
 
Professional iOS development
Aline Borges
 
Monkey talk
Confiz
 
Test Design for Continuous Integration and Delivery (2020)
Melissa Benua
 

What's hot (20)

PDF
React Native: Is It Worth It? UA Mobile 2017.
UA Mobile
 
PDF
DevOps Illustrated - A practical approach
David Oguntade
 
PPTX
Concurrent version management(tortoise CVS)
Mirza_Mohtashim
 
PDF
Open Source Compliance for DevOps - OSCON 2017
Bianca Xue Jiang
 
PPTX
Protecting Applications with Lambda@Edge and OAuth
Allan Denot
 
PDF
Testing Microservices
Nathan Jones
 
PPTX
Presentazione resin.io
Gianluca Leo
 
PDF
Continuous Integration on my work
Mu Chun Wang
 
PDF
Simple Unit Testing in Appcelerator Titanium Alloy
Aaron Saunders
 
PDF
In graph we trust: Microservices, GraphQL and security challenges
Mohammed A. Imran
 
PDF
Continuous Integration for Titanium
Denver Sessink
 
PPTX
Beyond Continuous Delivery - Jenkins User Conference - 23 Oct 2014
Chris Hilton
 
PDF
TiCalabash and TiMocha: The keys to Better & More Stable Titanium Apps
Andrew McElroy
 
PPTX
Tests your pipeline might be missing
Gene Gotimer
 
PDF
OWASP Workshop: Docker Image Security Best Practices by Liran Tal - January 2020
Liran Tal
 
PPTX
All you need is Zap - Omer Levi Hevroni & Yshay Yaacobi - DevOpsDays Tel Aviv...
DevOpsDays Tel Aviv
 
PPTX
ATAGTR2017 Upgrading a mobile tester's weapons with advanced debugging
Agile Testing Alliance
 
PPTX
Continuous SDK
Johannes Ebner
 
PDF
Continuous delivery in Qbon
Jaric Kuo
 
PDF
Appsody
Khawar Nehal [email protected]
 
React Native: Is It Worth It? UA Mobile 2017.
UA Mobile
 
DevOps Illustrated - A practical approach
David Oguntade
 
Concurrent version management(tortoise CVS)
Mirza_Mohtashim
 
Open Source Compliance for DevOps - OSCON 2017
Bianca Xue Jiang
 
Protecting Applications with Lambda@Edge and OAuth
Allan Denot
 
Testing Microservices
Nathan Jones
 
Presentazione resin.io
Gianluca Leo
 
Continuous Integration on my work
Mu Chun Wang
 
Simple Unit Testing in Appcelerator Titanium Alloy
Aaron Saunders
 
In graph we trust: Microservices, GraphQL and security challenges
Mohammed A. Imran
 
Continuous Integration for Titanium
Denver Sessink
 
Beyond Continuous Delivery - Jenkins User Conference - 23 Oct 2014
Chris Hilton
 
TiCalabash and TiMocha: The keys to Better & More Stable Titanium Apps
Andrew McElroy
 
Tests your pipeline might be missing
Gene Gotimer
 
OWASP Workshop: Docker Image Security Best Practices by Liran Tal - January 2020
Liran Tal
 
All you need is Zap - Omer Levi Hevroni & Yshay Yaacobi - DevOpsDays Tel Aviv...
DevOpsDays Tel Aviv
 
ATAGTR2017 Upgrading a mobile tester's weapons with advanced debugging
Agile Testing Alliance
 
Continuous SDK
Johannes Ebner
 
Continuous delivery in Qbon
Jaric Kuo
 
Appsody
Khawar Nehal [email protected]
 
Ad

Similar to Discovering and Fixing Dependency Vulnerabilities for Kubernetes apps with Snyk and Codefresh (20)

PPTX
Software Composition Analysis Deep Dive
Ulisses Albuquerque
 
PDF
Building android apps with Gradle (GREACH 2015)
René Gröschke
 
PDF
Open-Source Security Management and Vulnerability Impact Assessment
Priyanka Aash
 
PDF
Snyk Intro - Developer Security Essentials 2022
Liran Tal
 
PPTX
Secure Your DevOps Pipeline Best Practices Meetup 08022024.pptx
lior mazor
 
PPTX
Transforming your Security Products at the Endpoint
Ivanti
 
PDF
.NET Core on Mac
Melania Andrisan (Danciu)
 
PDF
Mobile Apps Using AngularJS - Adam Klein @ AngularJS IL
Ron Gershinsky
 
PPTX
Contemporary software TRENDS SOFTWARE TRENDS
melissaguillermo
 
PDF
Php Dependency Management with Composer ZendCon 2016
Clark Everetts
 
PDF
Analysis of-quality-of-pkgs-in-packagist-univ-20171024
Clark Everetts
 
PPT
IBM AppScan Source - The SAST solution
hearme limited company
 
PDF
Dockercon 2018 EU Updates
Ajeet Singh Raina
 
PDF
Exploiting and analyzing Microsoft Surface Applications
Wardell Motley, NSA IAM\IEM
 
PDF
Securing Open Source Code in Enterprise
Asankhaya Sharma
 
ODP
Effective DevSecOps
Pawel Krawczyk
 
PDF
Php Dependency Management with Composer ZendCon 2017
Clark Everetts
 
PDF
Understanding SBOMs: An Introduction to Modern Development
Anchore
 
PDF
Deploying Containerised Open-Source CSP Platforms
Angel Borroy López
 
PDF
Know What’s in Your Containers! Manage and Secure all Open Source that Compos...
DevOps.com
 
Software Composition Analysis Deep Dive
Ulisses Albuquerque
 
Building android apps with Gradle (GREACH 2015)
René Gröschke
 
Open-Source Security Management and Vulnerability Impact Assessment
Priyanka Aash
 
Snyk Intro - Developer Security Essentials 2022
Liran Tal
 
Secure Your DevOps Pipeline Best Practices Meetup 08022024.pptx
lior mazor
 
Transforming your Security Products at the Endpoint
Ivanti
 
.NET Core on Mac
Melania Andrisan (Danciu)
 
Mobile Apps Using AngularJS - Adam Klein @ AngularJS IL
Ron Gershinsky
 
Contemporary software TRENDS SOFTWARE TRENDS
melissaguillermo
 
Php Dependency Management with Composer ZendCon 2016
Clark Everetts
 
Analysis of-quality-of-pkgs-in-packagist-univ-20171024
Clark Everetts
 
IBM AppScan Source - The SAST solution
hearme limited company
 
Dockercon 2018 EU Updates
Ajeet Singh Raina
 
Exploiting and analyzing Microsoft Surface Applications
Wardell Motley, NSA IAM\IEM
 
Securing Open Source Code in Enterprise
Asankhaya Sharma
 
Effective DevSecOps
Pawel Krawczyk
 
Php Dependency Management with Composer ZendCon 2017
Clark Everetts
 
Understanding SBOMs: An Introduction to Modern Development
Anchore
 
Deploying Containerised Open-Source CSP Platforms
Angel Borroy López
 
Know What’s in Your Containers! Manage and Secure all Open Source that Compos...
DevOps.com
 
Ad

More from Codefresh (20)

PDF
Detect, debug, deploy with Codefresh and Lightstep
Codefresh
 
PDF
CICD Pipelines for Microservices: Lessons from the Trenches
Codefresh
 
PDF
Simplify Your Code with Helmfile
Codefresh
 
PDF
Making the Most of Helm 3 with Codefresh
Codefresh
 
PDF
5 Simple Tips for Troubleshooting Your Kubernetes Pods
Codefresh
 
PDF
Best Practices for Microservice CI/CD: Lessons from Expedia and Codefresh
Codefresh
 
PDF
Hybrid CI/CD with Kubernetes & Codefresh
Codefresh
 
PDF
VM vs Docker-Based Pipelines
Codefresh
 
PDF
Why You Should be Using Multi-stage Docker Builds in 2019
Codefresh
 
PPTX
Deploy Secure Cloud-Native Apps Fast
Codefresh
 
PDF
CICD Pipelines for Microservices Best Practices
Codefresh
 
PDF
Codefresh CICD New Features Launch! May 2019
Codefresh
 
PDF
Terraform GitOps on Codefresh
Codefresh
 
PDF
Adding Container Image Scanning to Your Codefresh Pipelines with Anchore
Codefresh
 
PDF
Image scanning using Clair
Codefresh
 
PDF
Updating Kubernetes With Helm Charts: Build, Test, Deploy with Codefresh and...
Codefresh
 
PDF
Docker based-Pipelines with Codefresh
Codefresh
 
PDF
Automated Serverless Pipelines with #GitOps on Codefresh
Codefresh
 
PDF
Net Pipeline on Windows Kubernetes
Codefresh
 
PPTX
Multi-cloud CI/CD with failover powered by K8s, Istio, Helm, and Codefresh
Codefresh
 
Detect, debug, deploy with Codefresh and Lightstep
Codefresh
 
CICD Pipelines for Microservices: Lessons from the Trenches
Codefresh
 
Simplify Your Code with Helmfile
Codefresh
 
Making the Most of Helm 3 with Codefresh
Codefresh
 
5 Simple Tips for Troubleshooting Your Kubernetes Pods
Codefresh
 
Best Practices for Microservice CI/CD: Lessons from Expedia and Codefresh
Codefresh
 
Hybrid CI/CD with Kubernetes & Codefresh
Codefresh
 
VM vs Docker-Based Pipelines
Codefresh
 
Why You Should be Using Multi-stage Docker Builds in 2019
Codefresh
 
Deploy Secure Cloud-Native Apps Fast
Codefresh
 
CICD Pipelines for Microservices Best Practices
Codefresh
 
Codefresh CICD New Features Launch! May 2019
Codefresh
 
Terraform GitOps on Codefresh
Codefresh
 
Adding Container Image Scanning to Your Codefresh Pipelines with Anchore
Codefresh
 
Image scanning using Clair
Codefresh
 
Updating Kubernetes With Helm Charts: Build, Test, Deploy with Codefresh and...
Codefresh
 
Docker based-Pipelines with Codefresh
Codefresh
 
Automated Serverless Pipelines with #GitOps on Codefresh
Codefresh
 
Net Pipeline on Windows Kubernetes
Codefresh
 
Multi-cloud CI/CD with failover powered by K8s, Istio, Helm, and Codefresh
Codefresh
 

Recently uploaded (20)

PDF
Architecture types and enterprise applications.pdf
ChristopherTHyatt
 
PDF
From MVP to Full-Scale Product A Startup’s Software Journey.pdf
KodekX
 
PPTX
2018-HIPAA-Renewal-Training for executives
Mayank Mathur
 
PDF
Taming the Chaos: How to Turn Unstructured Data into Decisions
Safe Software
 
PPT
Module 1.ppt Iot fundamentals and Architecture
nanditha7766
 
PDF
Zenith AI: Advanced Artificial Intelligence
Biz Preneurs
 
PDF
A comparative study of natural language inference in Swahili using monolingua...
IAESIJAI
 
PPTX
Microsoft Excel 365/2024 Beginner's training
frank yeboah
 
PDF
How ambidextrous entrepreneurial leaders react to the artificial intelligence...
IAESIJAI
 
PPTX
Modernising the Digital Integration Hub
Daniel Toomey
 
PDF
The influence of sentiment analysis in enhancing early warning system model f...
IAESIJAI
 
PDF
Enhancing emotion recognition model for a student engagement use case through...
IAESIJAI
 
PPTX
Custom Battery Pack Design Considerations for Performance and Safety
Epec Engineered Technologies
 
PDF
TrustArc Webinar - Click, Consent, Trust: Winning the Privacy Game
TrustArc
 
PDF
A Late Bloomer's Guide to GenAI: Ethics, Bias, and Effective Prompting - Boha...
Mindy Bohannon
 
PPTX
AI IN MARKETING- PRESENTED BY ANWAR KABIR 1st June 2025.pptx
HiraJay1
 
PDF
Consumable AI The What, Why & How for Small Teams.pdf
Vivek Sai
 
PDF
Hybrid horned lizard optimization algorithm-aquila optimizer for DC motor
IAESIJAI
 
DOCX
search engine optimization ppt fir known well about this
StandardCodeLearning
 
PPT
Galois Field Theory of Risk: A Perspective, Protocol, and Mathematical Backgr...
Melanie Swan
 
Architecture types and enterprise applications.pdf
ChristopherTHyatt
 
From MVP to Full-Scale Product A Startup’s Software Journey.pdf
KodekX
 
2018-HIPAA-Renewal-Training for executives
Mayank Mathur
 
Taming the Chaos: How to Turn Unstructured Data into Decisions
Safe Software
 
Module 1.ppt Iot fundamentals and Architecture
nanditha7766
 
Zenith AI: Advanced Artificial Intelligence
Biz Preneurs
 
A comparative study of natural language inference in Swahili using monolingua...
IAESIJAI
 
Microsoft Excel 365/2024 Beginner's training
frank yeboah
 
How ambidextrous entrepreneurial leaders react to the artificial intelligence...
IAESIJAI
 
Modernising the Digital Integration Hub
Daniel Toomey
 
The influence of sentiment analysis in enhancing early warning system model f...
IAESIJAI
 
Enhancing emotion recognition model for a student engagement use case through...
IAESIJAI
 
Custom Battery Pack Design Considerations for Performance and Safety
Epec Engineered Technologies
 
TrustArc Webinar - Click, Consent, Trust: Winning the Privacy Game
TrustArc
 
A Late Bloomer's Guide to GenAI: Ethics, Bias, and Effective Prompting - Boha...
Mindy Bohannon
 
AI IN MARKETING- PRESENTED BY ANWAR KABIR 1st June 2025.pptx
HiraJay1
 
Consumable AI The What, Why & How for Small Teams.pdf
Vivek Sai
 
Hybrid horned lizard optimization algorithm-aquila optimizer for DC motor
IAESIJAI
 
search engine optimization ppt fir known well about this
StandardCodeLearning
 
Galois Field Theory of Risk: A Perspective, Protocol, and Mathematical Backgr...
Melanie Swan
 

Discovering and Fixing Dependency Vulnerabilities for Kubernetes apps with Snyk and Codefresh