Runecast announced that advanced image scanning has been added to its existing Kubernetes Security Posture Management (KSPM) features in its legally owned enterprise platform Runecast (formerly known as Runecast Analyzer).  

The most recent Runecast release places Runecast at the forefront of cloud security in both the CNAPP and CSPM spaces as one of the few vendors that covers so many technologies and security standards – all via a single, AI-driven platform. It also completes its coverage to the third-largest cloud service provider on the market, Google Cloud Platform (GCP). Runecast customers will have benefit from dynamic Kubernetes vulnerability control, from code to deployment, thanks to this. 

Markus Strauss, Head of Product Management, Runecast, commented, “Kubernetes is no longer the new kid on the block, it’s a well-established container orchestration platform, running mission critical workloads and needs to be treated seriously when it comes to security and compliance. Runecast is here to simplify Kubernetes security and speed up operations.” 

Runecast automates security compliance tests for Kubernetes while operating safely on-premises and providing insight into both on-premises and cloud activity. No private information about the company, its clients, or its employees should ever leave it. With CVEs presented in the dashboard alongside vulnerabilities that are known to have been exploited, according to CISA’s KEV catalog, Runecast promises to make vulnerability management simple. 

IT teams see a list of key issues, such as vulnerabilities and misconfigurations, and instructions on how to fix them as soon as Runecast is deployed (in a matter of minutes). Automated audits aid in bringing the environment into compliance with CIS Benchmarks security compliance and Kubernetes Best Practices. AWS, Azure, GCP, VMware, Windows, and Linux issues can all be seen in hybrid setups from a single dashboard. 

Extended Runecast Kubernetes Insights- 

New Kubernetes intelligence and features added in Runecast 6.2 include: 

Image Scanning 

By offering vulnerability scanning for deployed Kubernetes container images, our Kubernetes vulnerability management extends from the cluster down to the nodes. Customers now have the option to automate Kubernetes vulnerability management, ensuring that Kubernetes installations adhere to best practises, security, and compliance standards. 

Shift Left with K8 Admission Controller Support 

Through direct integration with the Kubernetes Admission Controller, the latest version of Runecast gives development and operations teams the ability to scan containers. Now, businesses can easily link container deployments from any platform that accepts webhooks to Runecast’s image scanning capabilities. As a result, teams may utilise Runecast’s built-in policies to make sure that no container image is deployed that does not adhere to the policy’s requirements. If the pull requests don’t line up, they are also immediately denied. Runecast’s image scanning uses the template or manifest for the container that is about to be deployed and delivers the policy result for the image back to Kubernetes when a deployment request is made.