Container image vulnerability detected

twistlock

Set up the twistlock integration.

This page is not yet available in Spanish. We are working on its translation.
If you have any questions or feedback about our current translation project, feel free to reach out to us!

Goal

Detect vulnerabilities in container images.

Strategy

This rule lets you monitor Twistlock logs (@vulnerability.log_type:vulnerability) to detect vulnerabilities in a container image.

Triage and response

  1. Determine the impact of this vulnerability.
  2. Update the container image in the registry with a patched version of the software.
  3. Deploy the new image to all containers running the vulnerable image.

Change Log

29 Jun 2022 - Added queries for various vulnerability severity levels.