Kaspersky Container Security 1.1 contains the following new features and updates:
Provision of various severity levels of the detected malicious objects with a possibility to accept risks in case of non-critical objects.
Generation of the following report types on the detected vulnerabilities, security events and compliance with applicable policies:
Images Summary Report, including for images scanned in CI/CD.
Images Detailed Report, including for images scanned in CI/CD.
Risk acceptance report.
Optimization of the load on CI agents when integrating with the CI pipeline.
Support the running of scanners when there is a proxy between an image registry and the installed solution.
Support for application scopes to differentiate user roles' access to orchestrator resources and image registries as well as to differentiate the application of security policies on these resources and registries.
Support of the Image Content Trust by signature validation and a capability to block deployment of images that failed the check.
Control of applications and services running inside containers.
Support for Container Runtime Profiles, which can detect abnormal objects based on a custom or predefined profile pattern.
Monitoring and control of traffic between containers, containerization platform components, and external services and resources.