Vulnerabilities in Pods (Containerization) — 3

– As a security team, we want to ensure that all containers running in our kubernetes clusters do not have fix-able vulnerabilities.

– For each vendor, we should check to see if there are any containers with security vulnerabilities. If there are containers with vulnerabilities then we should check to see if there is an updated image that fixes the vulnerability. If there isn’t, then we should reach out to the vendor to fix.

Our current vendors that we are hosting pods from:
Datadog
Weave
PrismaCloud
Kong

Acceptance Criteria
PrismaCloud reports green for the pods from Datadog, Weave, PrismaCloud, and Kong in terms of vulnerabilities.