DevOps.com

  • Latest
    • Articles
    • Features
    • Most Read
    • News
    • News Releases
  • Topics
    • AI
    • Continuous Delivery
    • Continuous Testing
    • Cloud
    • Culture
    • DevSecOps
    • Enterprise DevOps
    • Leadership Suite
    • DevOps Practice
    • ROELBOB
    • DevOps Toolbox
    • IT as Code
  • Videos/Podcasts
    • DevOps Chats
    • DevOps Unbound
  • Webinars
    • Upcoming
    • On-Demand Webinars
  • Library
  • Events
    • Upcoming Events
    • On-Demand Events
  • Sponsored Communities
    • AWS Community Hub
    • CloudBees
    • IT as Code
    • Rocket on DevOps.com
    • Traceable on DevOps.com
    • Quali on DevOps.com
  • Related Sites
    • Techstrong Group
    • Container Journal
    • Security Boulevard
    • Techstrong Research
    • DevOps Chat
    • DevOps Dozen
    • DevOps TV
    • Digital Anarchist
  • Media Kit
  • About
  • AI
  • Cloud
  • Continuous Delivery
  • Continuous Testing
  • DevSecOps
  • Leadership Suite
  • Practices
  • ROELBOB
  • Low-Code/No-Code
  • IT as Code
  • More
    • Application Performance Management/Monitoring
    • Culture
    • Enterprise DevOps

Home » Latest News Releases » Fairwinds Insights Latest Release Unifies DevSecOps with Additional Shift-Left Security Enhancements

Fairwinds Insights Latest Release Unifies DevSecOps with Additional Shift-Left Security Enhancements

By: Veronica Haggar on May 17, 2022 Leave a Comment

Kubernetes governance platform adds automated Infrastructure-as-Code scanning and an enhanced GitHub integration so DevSecOps teams can find and fix misconfigurations faster

Recent Posts By Veronica Haggar
  • TechStrong Con 2022: Exploring What’s Next in Tech
  • Armory Launches Continuous Deployment-as-a-Service Product
  • ShiftLeft Announces Strategic Investment from and Go-to-Market Partnership with Wipro
More from Veronica Haggar
Related Posts
  • Fairwinds Insights Latest Release Unifies DevSecOps with Additional Shift-Left Security Enhancements
  • D2iQ Partners with GitLab Inc. to Accelerate the Deployment of Smart Cloud Native Applications
  • KSPM and Compliance simplified with Runecast
    Related Categories
  • KubeCon + CNC EU 2022
  • Latest News Releases
    Related Topics
  • Fairwinds
  • KubeCon + CloudNativeCon EU 2022
Show more
Show less

Valencia, SPAIN (Booth #S14), May 17, 2022 – Fairwinds, the leading provider of Kubernetes governance software, today announced the latest enhancements to Fairwinds Insights, the platform that unites DevSecOps teams. The latest version includes enhancements to help DevOps teams manage the complexity of keeping Kubernetes secure, alongside security teams, in ever-changing, agile development and production environments. 

DevOps Connect:DevSecOps @ RSAC 2022

“Kubernetes is a constantly changing environment that needs continuous scanning to ensure developers can ship their apps faster while ensuring configuration is secure from the start,” said Joe Pelletier, VP of Product at Fairwinds. “The security enhancements we announced today are another step we’ve taken to give DevSecOps teams a single, centralized view into the security of their containers and infrastructure-as-code at the time of pull request, all the way through to runtime. By doing so, we can help them save time, enable speed-to-market and avoid the need to deploy and manage custom point solutions.”

Tristan Bates, Engineering Manager, SRE Platform, PagerDuty, said, “Two things we monitor, and that are important to solve at an organization level, are security and compliance standards. We want every team to meet these standards and it needs to be easy to implement without blocking productivity. That’s why we use Fairwinds Insights and integrate it through the entire software development life cycle to alert teams if something is not compliant.” 

Fairwinds Insights’ new security enhancements include:

  • Auto-Scan Infrastructure-as-Code to support GitOps – designed for Platform Engineering Managers who need to roll out Infrastructure-as-Code scanning across multiple teams, Auto-Scan automatically discovers and scans YAML files and Helm charts in your GitHub Repos and provides automated scanning – without requiring individual CI pipeline integrations. With Auto-Scan, Platform Engineering teams can configure Infrastructure-as-Code scanning in minutes – creating an immediate feedback loop so developers can fix issues faster.
  • Third-party Image Upgrade Recommendation – accelerate remediation by recommending newer versions of third-party images with fewer vulnerabilities.
  • Falco Support – Fairwinds Insights can now integrate security events from the open source runtime container security project, Falco. This provides DevSecOps teams with a single pane of glass for monitoring container security and out-of-the-box integrations for automatically routing incidents to third-party tools like Slack and PagerDuty.  
  • Vulnerability Explorer – Use Fairwinds Insights to identify the riskiest container images across your Kubernetes clusters, including recommended upgrade and remediation options.

Fairwinds Insights also helps DevSecOps teams achieve compliance with the Kubernetes Hardening Guidance technical report issued by the National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency. Learn more about how Insights helps with Kubernetes Hardening: https://www.fairwinds.com/kubernetes-nsa-hardening-insights 

Resources

  • Kubernetes Security
  • Kubernetes Policy Enforcement
  • Kubernetes Configuration Benchmark Report
  • Fairwinds and PagerDuty integration

About Fairwinds

Fairwinds is the trusted partner for Kubernetes governance and security. With Fairwinds, customers ship cloud native applications faster, more cost-effectively and with less risk. Fairwinds provides a unified view between dev, sec and ops removing friction between those teams with software that simplifies complexity. The company is headquartered in Boston, MA and provides a fully remote and distributed work environment. For more information, visit www.fairwinds.com, read our blog or follow @FairwindsOps on Twitter.

Contact
Sarah Hawley
Mockingbird Communications
+1 480 292 4640
[email protected]

Filed Under: KubeCon + CNC EU 2022, Latest News Releases Tagged With: Fairwinds, KubeCon + CloudNativeCon EU 2022

Sponsored Content
Featured eBook
The State of Open Source Vulnerabilities 2020

The State of Open Source Vulnerabilities 2020

Open source components have become an integral part of today’s software applications — it’s impossible to keep up with the hectic pace of release cycles without them. As open source usage continues to grow, so does the number of eyes focused on open source security research, resulting in a record-breaking ... Read More
« DataCore Debuts Enterprise-Grade Container-Native Storage Software for Higher Performance and Scalability
Service Meshes Are on the Rise – But Greater Understanding and Experience Are Required »

TechStrong TV – Live

Click full-screen to enable volume control
Watch latest episodes and shows

Upcoming Webinars

Deploying Microservices With Pulumi & AWS Lambda
Tuesday, June 28, 2022 - 3:00 pm EDT
Boost Your Java/JavaScript Skills With a Multi-Experience Platform
Wednesday, June 29, 2022 - 3:30 pm EDT
Closing the Gap: Reducing Enterprise AppSec Risks Without Disrupting Deadlines
Thursday, June 30, 2022 - 11:00 am EDT

Latest from DevOps.com

Developer’s Guide to Web Application Security
June 24, 2022 | Anas Baig
Cloudflare Outage Outrage | Yet More FAA 5G Stupidity
June 23, 2022 | Richi Jennings
The Age of Software Supply Chain Disruption
June 23, 2022 | Bill Doerrfeld
Four Steps to Avoiding a Cloud Cost Incident
June 22, 2022 | Asim Razzaq
At Some Point, We’ve Shifted Too Far Left
June 22, 2022 | Don Macvittie

Get The Top Stories of the Week

  • View DevOps.com Privacy Policy
  • This field is for validation purposes and should be left unchanged.

Download Free eBook

The Automated Enterprise
The Automated Enterprise

Most Read on DevOps.com

Survey Uncovers Depth of Open Source Software Insecurity
June 21, 2022 | Mike Vizard
One Year Out: What Biden’s EO Means for Software Devs
June 20, 2022 | Tim Mackey
At Some Point, We’ve Shifted Too Far Left
June 22, 2022 | Don Macvittie
Open Source Coder Tool Helps Devs Build Cloud Spaces
June 20, 2022 | Mike Vizard
Cloudflare Outage Outrage | Yet More FAA 5G Stupidity
June 23, 2022 | Richi Jennings

On-Demand Webinars

DevOps.com Webinar ReplaysDevOps.com Webinar Replays
  • Home
  • About DevOps.com
  • Meet our Authors
  • Write for DevOps.com
  • Media Kit
  • Sponsor Info
  • Copyright
  • TOS
  • Privacy Policy

Powered by Techstrong Group, Inc.

© 2022 ·Techstrong Group, Inc.All rights reserved.