Integration with CI/CD
3 July 2024
ID 252616
Kaspersky Container Security lets you scan images of containers and IaC residing in code repository management systems in the CI/CD process to detect vulnerabilities, malware, misconfigurations, and exposed sensitive data.
At the project build stage in the repository management system, you can run the Kaspersky Container Security scanner to check the objects in the repository for compliance with the enabled security policies. The scanner is started from a registry using an Agent, such as GitLab Runner in GitLab. Data on the scan job and sending scan results are forwarded through the application programming interface (API).
When running an object scan during the project build stage, you must make sure that the Fail CI/CD step is not selected in the settings of the applied assurance policy. If this setting is activated, the solution will notify you of an error during the scan.
The scan results are displayed in the list of images in the Inventory → CI/CD → Scanning in CI/CD section.