Portshift Announces Open Source Kubei Container Runtime Scanning Software
March 23, 2020

Portshift introduced Kubei Open Source container scanning software.

Kubei is an open source Kubernetes runtime images scanning solution, presented to invite developer collaboration for the hardening of runtime environments.

Kubei identifies which pods were built from vulnerable images or contain newly discovered vulnerabilities, then it couples the Kubernetes information with vulnerability data for quick and easy remediation.

Traditionally, container scanning solutions have been used to detect vulnerabilities within the CI/CD development pipeline or within the image’s registry. This approach lacks the ability to observe running pods which were created before the image-scanning process took place. Portshift’s open source project introduces its technology to a broad community of DevOps/SRE teams involved with the deployment of containers -- their orchestration, management and security. With Kubei, scanning containers during runtime ensures strong security for Kubernetes clusters.

A powerful new solution for DevOps/SRE professionals, Kubei scans only images that are deployed in runtime that also include the scanning of non-registry images. It replaces the need to scan the entire images registry which contains many different versions and/or images that are not in use. The solution is easy to operate and integration with CI/CD pipeline tools is not a requirement. With Kubei:

1. The solution only scans deployed images. It provides accurate and real-time risk assessment, saving time and resources of scanning them offline.

2. All runtime images inside the cluster will be scanned, including non-registry images (whether coming from CI/CD or not), providing the organization with an extra layer of security.

Key capabilities of the new solution include one-click container configuration and discovery of vulnerabilities in runtime, throughout all Kubernetes clusters under management. Within minutes, Kubei summarizes and portraits all of the vulnerabilities existing in runtime deployments with an operational view. With this, DevOps will know immediately which containers have vulnerabilities, where these vulnerabilities exist (image, pod, container and namespace), and what needs to be patched or replaced.

"With the launch of Kubei, Portshift assists DevOps in maintaining development timelines, providing easy access and quick scanning of runtime (relevant) images on-demand," said Zohar Kaufman, Co-Founder and VP, R&D, Portshift. "The open-source tool couples Kubernetes information with the vulnerability data and includes context in addition to data for a much clearer picture of Kubernetes vulnerabilities in real-time."

Share this

Industry News

April 02, 2025

Kong announced the launch of the latest version of Kong AI Gateway, which introduces new features to provide the AI security and governance guardrails needed to make GenAI and Agentic AI production-ready.

April 02, 2025

Traefik Labs announced significant enhancements to its AI Gateway platform along with new developer tools designed to streamline enterprise AI adoption and API development.

April 02, 2025

Zencoder released its next-generation AI coding and unit testing agents, designed to accelerate software development for professional engineers.

April 02, 2025

Windsurf (formerly Codeium) and Netlify announced a new technology partnership that brings seamless, one-click deployment directly into the developer's integrated development environment (IDE.)

April 02, 2025

Opsera raised $20M in Series B funding.

April 02, 2025

The Cloud Native Computing Foundation® (CNCF®), which builds sustainable ecosystems for cloud native software, is making significant updates to its certification offerings.

April 01, 2025

The Cloud Native Computing Foundation® (CNCF®), which builds sustainable ecosystems for cloud native software, announced the Golden Kubestronaut program, a distinguished recognition for professionals who have demonstrated the highest level of expertise in Kubernetes, cloud native technologies, and Linux administration.

April 01, 2025

Red Hat announced new capabilities and enhancements for Red Hat Developer Hub, Red Hat’s enterprise-grade internal developer portal based on the Backstage project.

April 01, 2025

Platform9 announced that Private Cloud Director Community Edition is generally available.

March 31, 2025

Sonatype expanded support for software development in Rust via the Cargo registry to the entire Sonatype product suite.

March 31, 2025

CloudBolt Software announced its acquisition of StormForge, a provider of machine learning-powered Kubernetes resource optimization.

March 31, 2025

Mirantis announced the k0rdent Application Catalog – with 19 validated infrastructure and software integrations that empower platform engineers to accelerate the delivery of cloud-native and AI workloads wherever the\y need to be deployed.

March 31, 2025

Traefik Labs announced its Kubernetes-native API Management product suite is now available on the Oracle Cloud Marketplace.

March 27, 2025

webAI and MacStadium(link is external) announced a strategic partnership that will revolutionize the deployment of large-scale artificial intelligence models using Apple's cutting-edge silicon technology.

March 27, 2025

Development work on the Linux kernel — the core software that underpins the open source Linux operating system — has a new infrastructure partner in Akamai. The company's cloud computing service and content delivery network (CDN) will support kernel.org, the main distribution system for Linux kernel source code and the primary coordination vehicle for its global developer network.