Software components inside a container stack may contain vulnerabilities. To manage risk due to vulnerabilities, you must identify and remediate those before a container image gets deployed. Twistlock’s technologies help identify vulnerabilities that exist in open source container images, whether stored in a container registry or as a running container. In addition, Twistlock can detect anomalies at runtime and help remediate unexpected behaviors.
Twistlock’s integration with Google Cloud Platform provides these functions for containers stored in Container Registry and running in Container Engine. You can:
• Scan images in Google Container Registry for CVE and for policy compliance
• Detect anomalies in a running Container Engine cluster and take automated corrective actions, such as raising an alert or disconnecting the container’s network access
• Generate reports of policy violations in both Container Registry and Container Engine
To see more details about Twistlock for Google Cloud Platform, see our blog (link) and Google’s blog (link).
“Containers bring unprecedented speed and agility that allow DevOps to quickly respond to changing business needs. But organizations are concerned about the robustness of policy management and the ability to support organizational compliance needs” said Ben Bernstein, CEO and co-founder of Twistlock. “This integration is significant because Google Cloud Platform users can use Twistlock technologies to have the visibility and controls they need to maximize business efficiency and potential for innovations”