Securing the container development pipeline
JFrog Xray provides organizations with a clear insight of the data-center’s components, ensuring their version, licenses and security are all checked and running up to date. Aqua Security provides end-to-end security for Docker container development and deployment. Together they enable organizations to fully automate security of their container development pipeline. Aqua easily integrates with JFrog Xray simply by adding your Aqua account token to your Xray configuration. Xray will then automatically use Aqua to scan Docker images stored in your pipeline, and provide vulnerability information allowing you to secure your images.
Integrated Vulnerability Scanning – Scan Docker images stored in JFrog Artifactory or other registries for known vulnerabilities, including language-specific vulnerabilities.
Extend JFrog Xray Capabilities – This integration with Aqua allows Xray to look inside container images in packages and binaries.
Enforce Docker Image Policies – Prevent unapproved images from being downloaded in Artifactory repositories.
Improve Compliance – Using Aqua’s image scan reports allows one to meet compliance requirements for code vulnerability scores and status.
Easy Integration – JFrog Xray integrates to the Aqua Security Platform in minutes.
Aqua Security enables enterprises to secure their virtual container environments from development to production, accelerating container adoption and bridging the gap between DevOps and IT security. Aqua’s Container Security Platform provides full visibility into container activity, allowing organizations to detect and prevent suspicious activity and attacks in real time. Integrated with container lifecycle and orchestration tools, the Aqua platform provides transparent, automated security while helping to enforce policy and simplify regulatory compliance. Aqua was founded by IT security leaders, and is backed by TLV Partners and Microsoft Ventures, with offices in Israel and San Francisco, CA.