In Kaspersky Container Security, you can generate reports on image scan results. Depending on the required level of detail, image reports can be summary reports or detailed reports.
Images summary report.
A summary report provides consolidated information on the selected images. It lists names and digests of images, as well as names of clusters to which these images belong. A summary report contains data on image compliance with security policy requirements, the names of policies that invoked the image scans, and the scan status. For each image, the report contains data on the number of identified risks related to vulnerabilities, malware, sensitive information, and misconfigurations.
Images detailed report
A detailed report provides more detailed information about selected images, completed scans, and identified security issues. Each report includes the date and time of the last scan, the cluster containing the selected image, a risk assessment, and an assessment of compliance with security policy requirements. Kaspersky Container Security displays the operating system of the image and its version. The solution also indicates whether support for this operating system has been discontinued or whether the operating system is not allowed by the assurance policy.
The report provides information about the number of objects with different severity levels based on identified vulnerabilities, malware, sensitive data, and misconfigurations.
Under Assurance policies, the solution displays a list of assurance policies and indicates whether this scan stage was completed successfully or with errors. The report also specifies the action performed by Kaspersky Container Security in accordance with a specific policy. In this case, the report may show that the CI/CD stage was blocked, that images were marked as non-compliant with security requirements, or that both of these actions were performed.
For each applied assurance policy, Kaspersky Container Security lists the identified security issues related to vulnerabilities, malware, misconfigurations, sensitive data, the operating system, or blocked data packages. The solution also displays the scopes implemented as part of the assurance policy.
The Vulnerabilities section provides a list of identified vulnerabilities, their severity levels, the resource in which they were detected, and the image version in which the vulnerabilities were fixed.
The Malware section displays a list of detected malicious objects. For each object, its severity level, path, MD5 hash, and SHA256 hash are indicated.
The Sensitive data section displays a list of detected objects containing sensitive data, and the names of the rules that the objects break. For each object, the severity level and path are indicated.
The Misconfigurations section provides a list indicating the names of files in which misconfigurations were identified, the severity levels of the misconfigurations, and the types of files (for example, a Docker file). It also specifies the detected issue and provides recommendations on resolving the issue.
Kaspersky Container Security receives a description of misconfiguration-related issues from the internal database for configuration file analysis. This includes modules that scan configuration files from: Kubernetes, Dockerfile, Containerfile, Terraform, Cloudformation, Azure ARM Template, and Helm Chart. The description of misconfigurations and remediation recommendations are presented in the same language as the specified scan modules. For example, the description of misconfigurations from Kubernetes is provided in English.
This database is updated when a new version of the application is released.
The report also contains a list of resources that do not comply with the applied assurance policies. For each resource, the solution indicates its severity level, version, and type.
Page top