Overview
Explore the critical issue of container image vulnerabilities and learn how to secure them using Copa in this informative conference talk. Discover the prevalence of vulnerabilities in production container images and the challenges of implementing solutions. Understand the dilemma of whether to rebuild from upstream or address vulnerabilities inherited from base images or third-party tools. Follow along as Prerit Munjal demonstrates the process of applying instant patches to images using Copa, a tool that leverages scanners like Trivy for real-time vulnerability updates. Learn how Copa utilizes buildkit to download updates and apply hot fixes to affected images. Gain insights into using Rego Files to filter specific vulnerabilities and address security concerns promptly in container environments.
Syllabus
Hot Fix: Securing the Vulnerable Images with Copa - Prerit Munjal, Independent
Taught by
Linux Foundation