Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

CNCF [Cloud Native Computing Foundation]

How to Generate VEX Automatically for Your Project

CNCF [Cloud Native Computing Foundation] via YouTube

Overview

Discover how to revolutionize vulnerability management in this 33-minute conference talk from the Cloud Native Computing Foundation (CNCF). Learn about VEX (Vulnerability Exploitability eXchange) and its role in solving vulnerability management challenges. Explore the benefits of producing VEX for container image deliverables in open-source projects, including reduced false positives in security scans and improved focus on real security issues. Gain insights into automating VEX generation for Kubernetes workloads using Kubescape, a CNCF project designed to identify misconfigurations and vulnerabilities. Examine a new GitHub Action that streamlines VEX file generation in release processes, enhancing vulnerability management for both project maintainers and users.

Syllabus

How to Generate VEX Automatically for Your Project - Shlomo Heigh, CyberArk & Ben Hirschberg, ARMO

Taught by

CNCF [Cloud Native Computing Foundation]

Reviews

Start your review of How to Generate VEX Automatically for Your Project

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.