Changelog

April 10th, 2017

Docker

RUN command for vulnerability scanning container builds.

Google Cloud Platform

Custom Build step for vulnerability scanning in Google Container Builder.

Fail Vulnerable Builds

Both container building methods above support failing a build on the presence of severe vulnerabilities.

March 27th, 2017

Email

Long and Short Scan Result HTML emails. You can set your preference and NVD score threshold.

Website

Improve sorting of packages using sum of vulnerability scores (note that this de-emphasizes packages with a small number of high priority vulnerabilities).

Notifications

Vulnerabilities lacking scores; paid plans include analyzing and scoring.

March 13th, 2017

Blog

Our first public research project: scanning official Docker image vulnerabilities and analyzing the results.

Newsletter

Designed and launched a newsletter about major vulnerabilities, compromises, and security news.

Landing

www.federacy.com is now a landing page. app.federacy.com and api.federacy.com now point to the webapp and api, respectively

February 6th, 2017

Docker

Support for Docker has been improved and heavily tested against official repositories.

RHEL

Support for RHEL has been improved.

Containers

api now supports containers. Next up, webapp.

Weekly Roundup

Updates on major vulnerabilities, compromises, and security news.