Intruder reveals container image scanning upgrade

Intruder has introduced a Container Image Scanning capability as an upgrade to its cloud security platform. The feature automatically scans container images for vulnerabilities and provides users with actionable information on potential risks, without requiring the deployment or maintenance of scanning agents.

The update builds on existing integrations with major cloud providers and supports Amazon Web Services Elastic Container Registry, Google Cloud Artifact Registry, and Azure Container Registry. New and updated container images are scanned daily for vulnerabilities, with results presented in a single prioritised list alongside other vulnerabilities and misconfigurations identified by Intruder.

The feature is available to users across Cloud, Pro, and Enterprise tiers, as well as those on the free trial. New customers are required to complete additional setup when connecting cloud integrations.

Key aspects of the update include:

• No agents required: Registry-level integrations with cloud providers remove the need to deploy and maintain scanning agents.
• Detection before execution: Issues can be identified at the registry stage before container images are run in production.
• Noise reduction: The system uses tagging to focus on actively used images, filtering out outdated or unused images.
• Comprehensive coverage: Supports scanning across environments such as AWS Lambda and Amazon ECS, as well as containerised workloads running within virtual machines.
• Managed service image scanning: Extends scanning to managed container services where direct access to underlying nodes is not available.

The update extends Intruder’s cloud security capabilities by enabling vulnerability scanning across container environments within supported cloud platforms.