- As a security team, we want to ensure that all containers running in our kubernetes clusters do not have fix-able vulnerabilities.
- For each vendor, we should check to see if there are any containers with security vulnerabilities. If there are containers with vulnerabilities then we should check to see if there is an updated image that fixes the vulnerability. If there isn't, then we should reach out to the vendor to fix.
Our current vendors that we are hosting pods from:
PrismaCloud reports green for the pods from Datadog, Weave, PrismaCloud, and Kong in terms of vulnerabilities.