YoVDO

How to Generate VEX Automatically for Your Project

Offered By: CNCF [Cloud Native Computing Foundation] via YouTube

Tags

Vulnerability Management Courses Kubernetes Courses DevSecOps Courses GitHub Actions Courses Container Security Courses Cloud-Native Security Courses Kubescape Courses VEX Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Discover how to revolutionize vulnerability management in this 33-minute conference talk from the Cloud Native Computing Foundation (CNCF). Learn about VEX (Vulnerability Exploitability eXchange) and its role in solving vulnerability management challenges. Explore the benefits of producing VEX for container image deliverables in open-source projects, including reduced false positives in security scans and improved focus on real security issues. Gain insights into automating VEX generation for Kubernetes workloads using Kubescape, a CNCF project designed to identify misconfigurations and vulnerabilities. Examine a new GitHub Action that streamlines VEX file generation in release processes, enhancing vulnerability management for both project maintainers and users.

Syllabus

How to Generate VEX Automatically for Your Project - Shlomo Heigh, CyberArk & Ben Hirschberg, ARMO


Taught by

CNCF [Cloud Native Computing Foundation]

Related Courses

Create an Auto-Fence Asset in Houdini - The Nodes 2
Envato Tuts+ via YouTube Your Critical System Is - Not? - Vulnerable - CSAF, VEX, SBOM and the Future of Advisories
BSidesLV via YouTube Your Software IS - NOT Vulnerable - CSAF, VEX, and the Future of Advisories
Black Hat via YouTube Towards Effective and Scalable Vulnerability Management
BSidesLV via YouTube Exploring Houdini's SOP Solver
Pluralsight