Aqua Open-Source Contributions
Aqua is committed to help the container ecosystem deliver better and more secure code. We dedicate some of our resources to create and maintain open-source projects, as well as contribute to existing ones, including Moby and Kubernetes.
Automating Kubernetes security checks
Kube-Bench automates the CIS Benchmark for Kubernetes, making it easy for operators to check whether each node in their Kubernetes cluster is configured according to security best practices.
Penetration testing for Kubernetes clusters
Kube-hunter is an open-source tool that hunts for security issues in your Kubernetes clusters. It’s designed to increase awareness and visibility of the security controls in Kubernetes environments.
Container image vulnerability scanner
Trivy is an open-source is a simple and comprehensive vulnerability scanner for container images. It detects vulnerabilities of OS packages (Alpine, RHEL, CentOS, etc.) and application dependencies (Bundler, Composer, npm, yarn etc.)
Leveraging image metadata for automation
Manifesto is a command line tool for managing arbitrary metadata for a container image.
Docker Contribution: Storage Quota
Setting disk quota per container
Aqua has contributed this capability to the Docker open source (now part of Project Moby), and it was released as part of Docker 1.13.