April 10th, 2017
RUN command for vulnerability scanning container builds.
Google Cloud Platform
Custom Build step for vulnerability scanning in Google Container Builder.
Fail Vulnerable Builds
Both container building methods above support failing a build on the presence of severe vulnerabilities.
March 27th, 2017
Long and Short Scan Result HTML emails. You can set your preference and NVD score threshold.
Improve sorting of packages using sum of vulnerability scores (note that this de-emphasizes packages with a small number of high priority vulnerabilities).
Vulnerabilities lacking scores; paid plans include analyzing and scoring.
March 13th, 2017
Our first public research project: scanning official Docker image vulnerabilities and analyzing the results.
Designed and launched a newsletter about major vulnerabilities, compromises, and security news.
www.federacy.com is now a landing page. app.federacy.com and api.federacy.com now point to the webapp and api, respectively
February 6th, 2017
Support for Docker has been improved and heavily tested against official repositories.
Support for RHEL has been improved.
api now supports containers. Next up, webapp.