Kaspersky Container Security allows you to scan images that are used in CI/CD. The solution is incorporated into CI/CD as a pipeline stage, where the Kaspersky Container Security Scanner is run.
To scan images from CI/CD, you should configure the integration of Kaspersky Container Security with CI/CD processes.
Kaspersky Container Security performs the following types of scans in CI/CD:
The scanning results are forwarded to the server and displayed in the Management Console in the Resources → CI/CD section. The provided table lists the images that were scanned, shows the results of the risk assessment, and indicates the detected vulnerabilities.
You can click the image name link to open a page with detailed information about image scanning results. This page is similar to the page showing the results of registry images scanning.
Kaspersky Container Security also displays the type of artifact for each object. Two main artifacts are used:
The table indicates the build number and build pipeline for each scan object. These parameters can be used to determine the specific stage where the image failed.
For CI/CD images, rescanning is not provided.
Page top