Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Container Security with Trivy
Search
Masahiro331
June 11, 2022
Technology
260
0
Share
Embed
Copy iframe code
Copy JS code
Copy link
Start on current slide
Container Security with Trivy
Masahiro331
June 11, 2022
More Decks by Masahiro331
See All by Masahiro331
Model Context Protocol 勉強会
masahiro331
0
99
OSSに新機能を追加するまでの苦労話
masahiro331
0
240
Analyze Filesystem in Virtual Machine Image
masahiro331
0
230
SBOMを利用したソフトウェアサプライチェーンの保護
masahiro331
4
2.8k
Introduction Supply Chain Security
masahiro331
0
190
VirtualMachine Image scanning PoC with Molysis
masahiro331
0
200
Other Decks in Technology
See All in Technology
小さいから、全部わかる。— 常駐AI "xangi" のすすめ
sugupoko
0
240
AIペネトレーションテスト・ セキュリティ検証「AgenticSec」紹介資料
laysakura
2
8k
ご挨拶「10周年を迎える共創ラボのこれまでとこれから」
iotcomjpadmin
0
180
Kotlin 開発のツラミを爆破した話! / Explode the difficulty of Kotlin dev!
eller86
0
140
Fabricをフル活用する AI Agent Hub -製造業特化AIエージェントの設計
iotcomjpadmin
0
190
認証認可だけじゃない! ID管理の構成要素と ライフサイクルを意識しよう
ritou
1
460
#エンジニアBooks 30分でわかる 「技術記事を書く技術」 / engineer-books 2026-06-30
jnchito
1
180
Text-to-SQLをAgentCoreで実現し、生成されるSQLの精度を定量的に評価する
yakumo
2
460
【FinOps】データドリブンな意思決定を目指して
z63d
3
590
product engineering with qa
nealle
0
140
『AIに負けない』より『AIと遊ぶ』」〜ワクワクが最強のテスト・QA学習戦略_公開用
odan611
1
370
攻撃者がいなくてもAIエージェントはインシデントを起こす
nomizone
0
190
Featured
See All Featured
New Earth Scene 8
popppiees
3
2.4k
Building a A Zero-Code AI SEO Workflow
portentint
PRO
0
620
Refactoring Trust on Your Teams (GOTO; Chicago 2020)
rmw
35
3.5k
Deep Space Network (abreviated)
tonyrice
0
220
We Have a Design System, Now What?
morganepeng
55
8.2k
More Than Pixels: Becoming A User Experience Designer
marktimemedia
3
460
Navigating Algorithm Shifts & AI Overviews - #SMXNext
aleyda
1
1.3k
BBQ
matthewcrist
89
10k
The Anti-SEO Checklist Checklist. Pubcon Cyber Week
ryanjones
0
180
Speed Design
sergeychernyshev
33
1.9k
4 Signs Your Business is Dying
shpigford
187
22k
The State of eCommerce SEO: How to Win in Today's Products SERPs - #SEOweek
aleyda
2
11k
Transcript
ίϯςφηΩϡϦςΟπʔϧ 5SJWZͷհ ౻ଜڡ߂ʢʣ
࣍ w ࣗݾհ w ҆શͳίϯςφͱ w ίϯςφεΩϟφπʔϧ w 5SJWZͷհ w
5SJWZͷΈʹ͍ͭͯ
ࣗݾհ
౻ଜ ڡ߂ # Trivy/helmͷίϯτϦϏϡʔλ Github: @masahiro331
ࠓճͷͷഎܠ ίϯςφΞϓϦέʔγϣϯͷ ੬ऑੑΛཧ҆͠શʹ͍ͨ͠
ຊ
҆શͳίϯςφͱʁ
৴པ͞Εͨݸਓஂମ͕อक ҆શͳύοέʔδΛར༻
৴པ͞Εͨݸਓஂମ͕อक ҆શͳύοέʔδΛར༻
ίϯςφͰར༻͞ΕΔύοέʔδ w 04ύοέʔδ 31.ύοέʔδ EFCύοέʔδ FUD w ΞϓϦέʔγϣϯύοέʔδ
OQNύοέʔδ HFNύοέʔδ FUD
ίϯςφͰར༻͞ΕΔύοέʔδ w 04ύοέʔδ 31.ύοέʔδ EFCύοέʔδ FUD w ΞϓϦέʔγϣϯύοέʔδ
OQNύοέʔδ HFNύοέʔδ FUD ͜ΕΒͷύοέʔδʹ੬ऑੑ͕ແ͍͔ɺ ͘͠Өڹ͠ͳ͍͜ͱஅ͢Δඞཁ͕͋Δ
ύοέʔδͷ੬ऑੑΛೝࣝ͢Δඞཁ͕͋Δ ͦͷͨΊʹ
ύοέʔδͷ੬ऑੑΛೝࣝ͢Δඞཁ͕͋Δ ίϯςφεΩϟϯπʔϧͰ੬ऑੑͷࣗಈݕ ͦͷͨΊʹ
ίϯςφͷεΩϟϯπʔϧҰཡ w 5SJWZ w $MBJS w "ODIPSF&OHJOF w 2VBZ w
.JDSP4DBOOFS w %PDLFS)VC w ($3
ίϯςφεΩϟϯπʔϧͱͯ͠5SJWZΛ࠾༻
5SJWZͱ w LORZGࢯ͕։ൃͨ͠ίϯς φεΩϟϯπʔϧ w ଞͷεΩϟϯπʔϧͱൺֱͯ͠ ಋೖ͕༰қ w ΞϓϦέʔγϣϯύοέʔδͷ ੬ऑੑݕՄೳ
w ಠࣗͷํ๏Ͱ"MQJOFͷ੬ऑੑΛ ݕ͍ͯ͠ΔͨΊਫ਼͕ߴ͍ LORZGࢯ
֤εΩϟϯπʔϧͷݕূ݁Ռ ࢀߟใIUUQTHJUIVCDPNLORZGUSJWZPWFSWJFX
֤εΩϟϯπʔϧͷݕূ݁Ռ ࢀߟใIUUQTHJUIVCDPNLORZGUSJWZPWFSWJFX ΞϓϦέʔγϣϯ ύοέʔδΈΕΔ
5SJWZͷରԠύοέʔδ w (FN fi MFMPDL SVCZ w 1JQ fi
MFMPDL QZUIPO w 1PFUSZMPDL QZUIPO w $PNQPTFSMPDL 1)1 w 1BDLBHFMPDLKTPO KBWBTDSJQU w ZBSOMPDL KBWBTDSJQU w $BSHPMPDL 3VTU
֤εΩϟϯπʔϧͷݕূ݁Ռ ࢀߟใIUUQTHJUIVCDPNLORZGUSJWZPWFSWJFX ಋೖ͕༰қ
5SJWZͷಋೖ
5SJWZͷ͍ํ
֤εΩϟϯπʔϧͷݕূ݁Ռ ࢀߟใIUUQTHJUIVCDPNLORZGUSJWZPWFSWJFX ݕਫ਼͕ߴ͍
֤εΩϟϯπʔϧͷݕূ݁Ռ ࢀߟใIUUQTHJUIVCDPNLORZGUSJWZPWFSWJFX $*্Ͱ͍͍͢
5SJWZͷΈʹ͍ͭͯհ
5SJWZͷߏ %PDLFS3FHJTUSZ ᶅ੬ऑੑݕ ੬ऑੑ%# ᶃ੬ऑੑใͷऔಘ ᶄ%PDLFS-BZFSΛऔಘ͠ *NBHFΛΈཱͯΔ
੬ऑੑ%# %PDLFS3FHJTUSZ ᶃ੬ऑੑใͷऔಘ ᶅ੬ऑੑݕ ੬ऑੑ%#ʹ͍ͭͯ ᶄ%PDLFS-BZFSΛऔಘ͠ *NBHFΛΈཱͯΔ
੬ऑੑ%#ʹ͍ͭͯ w ੬ऑੑใHJUIVCϦϙδτϦͰཧ͍ͯ͠Δ w 5SJWZॳճىಈ࣌ʹ੬ऑੑใΛDMPOF͢Δ w ࣍ճىಈҎ߱HJUͷࠩΞοϓσʔτ w ϩʔΧϧͷσʔλϕʔεͱͯ͠CCPMU%#Λ༻
ॳճ࣮ߦ࣌ʹHJUIVC͔Β੬ऑੑใΛऔಘ ੬ऑੑϦϙδτϦ $BDIFWVMOMJTU HJUDMPOF
࣍ճҎ߱HJUQVMMͰͷࠩߋ৽ ੬ऑੑϦϙδτϦ $BDIFWVMOMJTU HJUQVMM
੬ऑੑใ$JSDMF$*Ͱఆظߋ৽ ੬ऑੑϦϙδτϦ $BDIFWVMOMJTU $SPO+PCͰͷߋ৽ ੬ऑੑσʔλιʔε 5SBWJT$*
HJUϦϙδτϦΛܦ༝͢Δཧ༝ w ੬ऑੑσʔλιʔε 3FE)BU4FDVSJUZ%BUB ͳͲ ͷλΠϜΞτ͕ϢʔβʹӨڹ͢ΔͷΛΛ͙ͨΊ w ߋ৽σʔλΛࠩΞοϓσʔτ͢Δ͜ͱ͕Մೳ
%PDLFS*NBHFͷղੳʹ͍ͭͯ
੬ऑੑ%# %PDLFS3FHJTUSZ ᶃ੬ऑੑใͷऔಘ ᶅ੬ऑੑݕ %PDLFS*NBHFͷղੳʹ͍ͭͯ ᶄ%PDLFS-BZFSΛऔಘ͠ *NBHFΛΈཱͯΔ
%PDLFS*NBHFͷղੳʹ͍ͭͯ w 5SJWZҎԼͷεςοϓͰ%PDLFS*NBHFΛղੳ %PDLFS3FHJTUSZ͔Β*NBHF-BZFSΛऔಘ *NBHF-BZFSΛΈཱͯͯϑΝΠϧΛऔΓग़͢ ੬ऑੑݕʹඞཁͳϑΝΠϧΛऔಘ ECJOTUBMMFE
(FN fi MFMPDLͳͲ w "MQJOFʹ͍ͭͯ36/ίϚϯυղੳ͢ΔͨΊελςΟοΫϦ ϯΫ͞ΕͨϥΠϒϥϦͷ੬ऑੑݕ
'30.DPNQPTFSBMQJOF "%%DPNQPTFSMPDLQIQBQQDPNQPTFSMPDL $.%<CJOCBTI> ྫ͑͜Μͳ%PDLFS fi MF
*NBHF-BZFSΛऔಘ͢Δ '30.DPNQPTFS "%%DPNQPTFSMPDL 36/CJOCBTI
*NBHF-BZFSΛੵΈॏͶ*NBHFΛ࡞ %PDLFS*NBHF '30.DPNQPTFS "%%DPNQPTFSMPDL 36/CJOCBTI
*NBHF͔Βొͨ͠ϑΝΠϧΛऔΓग़͢ %PDLFS*NBHF $PNQPTFSMPDL BMQJOFSFMFBTF ECJOTUBMMFE '30.DPNQPTFS "%%DPNQPTFSMPDL 36/CJOCBTI
੬ऑੑ%# %PDLFS3FHJTUSZ ᶃ੬ऑੑใͷऔಘ ᶅ੬ऑੑݕ ੬ऑੑݕʹ͍ͭͯ ᶄ%PDLFS-BZFSΛऔಘ͠ *NBHFΛΈཱͯΔ
(FN fi MFMPDL ΠϯετʔϧࡁΈύοέʔδΛύʔε (&. SFNPUFIUUQTSVCZHFNTPSH TQFDT BDUJPODBCMF
BDUJPOQBDL OJPS d XFCTPDLFUESJWFS BDUJPONBJMFS BDUJPOQBDL BDUJPOWJFX BDUJWFKPC NBJM d SBJMTEPNUFTUJOH d 1JQ fi MFMPDL BNRQ\ IBTIFT< TIBCFC TIBBCD > WFSTJPO ^ BVUPQFQ\ IBTIFT< TIBECC > WFSTJPO ^ $2C[FL,/CH/R6K$S%+LPH71%H 1MJCTTM 7DS "Y@ 4 * 544-TIBSFEMJCSBSJFT 6IUUQTXXXPQFOTTMPSH -0QFO44- PPQFOTTM N5JNP5FSBTUJNPUFSBT!JLJ fi U DCCCCDEDBCCFFFCC %TPMJCDNVTMY@TPTPMJCDSZQUPTP QTPMJCTTMTP SMJCSFTTM 'MJC 3MJCTTMTP B ;24I29.-(31(CR%Q8;/-Y/N#V5 'VTS 'VTSMJC 3MJCTTMTP B ;2KQFZQ)0H.JIXM(1NND ECJOTUBMMFE
੬ऑੑ%#͔Βऔಘͨ͠σʔλͱಥ߹ (FN fi MFMPDL (&. SFNPUFIUUQTSVCZHFNTPSH TQFDT BDUJPODBCMF
BDUJPOQBDL OJPS d XFCTPDLFUESJWFS BDUJPONBJMFS BDUJPOQBDL BDUJPOWJFX 1JQ fi MFMPDL BNRQ\ IBTIFT< TIBCFC TIBBCD > WFSTJPO ^ BVUPQFQ\ $2C[FL,/CH/R6K$S%+LPH71%H 1MJCTTM 7DS "Y@ 4 * 544-TIBSFEMJCSBSJFT 6IUUQTXXXPQFOTTMPSH -0QFO44- PPQFOTTM N5JNP5FSBTUJNPUFSBT!JLJ fi U DCCCCDEDBCCFFFC C %TPMJCDNVTMY@TPTPMJCDSZQUPTP QTPMJCTTMTP SMJCSFTTM 'MJC 3MJCTTMTP ECJOTUBMMFE ੬ऑੑใ
࠷ޙʹ w 5SJWZγϯϓϧͳ੬ऑੑݕ͚ͩΛఏڙ w ͜ͷػೳΛར༻ͯ͠৽ͨͳ%FW4FD0QTπʔ ϧͷ։ൃͳͲظͰ͖Δ w ͜ͷػೳΛར༻ͯ͠LVCFSOFUFTڥͷ੬ऑੑ ݕΛࣗಈԽ͍ͨ͠
͓ΘΓ