Implementing Security Scanning in CI/CD Pipelines
Implement security scanning with Trivy for container images and Kubernetes manifests in CI/CD pipelines.
Lab Overview
This hands-on lab teaches you to implement security scanning as part of your platform engineering workflow using Trivy.
You'll learn to:
- Install and configure Trivy for vulnerability scanning
- Scan container images for CVEs and misconfigurations
- Scan Kubernetes manifests for security issues
- Integrate scanning into CI/CD pipeline workflows
- Configure scan policies and severity thresholds
Security scanning is essential for platform engineering teams to identify vulnerabilities before deployment and maintain secure container supply chains.
What You'll Learn
Install and configure Trivy vulnerability scanner
Scan container images for vulnerabilities
Scan Kubernetes manifests for security misconfigurations
Configure scanning thresholds and policies
Prerequisites
kubernetes-fundamentals
docker-basics
yaml-basics
Technologies Covered
Part of a Course
This lab is part of the Certified Cloud Native Platform Engineer (CNPE) course
View All CoursesChoose your plan
Simple, Transparent Pricing
One price, everything included
Monthly Plan
Access all content
Quarterly Plan
Save 16% with quarterly billing
Everything Included in Your Subscription
Content & Learning
- Access to all courses and bootcamps
- Video lessons with closed captions
- Interactive quizzes and assessments
- Course completion certificates
Hands-On Labs
- Browser-based cloud labs
- Pre-configured VMs ready to use
- Playgrounds for experiments
- Multi-VM realistic scenarios
AWS Integration
- Managed AWS Account included
- Pre-configured environments
- Real-world cloud scenarios
Support & Community
- Priority support
- Active community forum
No Setup Required
- Everything runs in your browser
- No software installation needed
- Automatic environment provisioning
- Works on any device
Ready to Get Started?
Start this hands-on lab and build real-world Platform Engineering skills
Get Access Now