YoVDO

How to Generate VEX Automatically for Your Project

Offered By: CNCF [Cloud Native Computing Foundation] via YouTube

Tags

Vulnerability Management Courses Kubernetes Courses DevSecOps Courses GitHub Actions Courses Container Security Courses Cloud-Native Security Courses Kubescape Courses VEX Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Discover how to revolutionize vulnerability management in this 33-minute conference talk from the Cloud Native Computing Foundation (CNCF). Learn about VEX (Vulnerability Exploitability eXchange) and its role in solving vulnerability management challenges. Explore the benefits of producing VEX for container image deliverables in open-source projects, including reduced false positives in security scans and improved focus on real security issues. Gain insights into automating VEX generation for Kubernetes workloads using Kubescape, a CNCF project designed to identify misconfigurations and vulnerabilities. Examine a new GitHub Action that streamlines VEX file generation in release processes, enhancing vulnerability management for both project maintainers and users.

Syllabus

How to Generate VEX Automatically for Your Project - Shlomo Heigh, CyberArk & Ben Hirschberg, ARMO


Taught by

CNCF [Cloud Native Computing Foundation]

Related Courses

DevOps CI/CD Pipeline: Automation from development to deployment
Universidad Anáhuac via edX DevOps Pipeline: Automatización hasta el despliegue
Universidad Anáhuac via edX Exploring the Benefits of Continuous Security and Compliance for Cloud Infrastructure
Pluralsight Integrating Incident Response into DevSecOps
Pluralsight DevSecOps: Building a Secure Continuous Delivery Pipeline
LinkedIn Learning