Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Container Security with Trivy
Search
Sponsored
·
Ship Features Fearlessly
Turn features on and off without deploys. Used by thousands of Ruby developers.
→
Masahiro331
June 11, 2022
Technology
260
0
Share
Embed
Copy iframe code
Copy JS code
Copy link
Start on current slide
Container Security with Trivy
Masahiro331
June 11, 2022
More Decks by Masahiro331
See All by Masahiro331
Model Context Protocol 勉強会
masahiro331
0
99
OSSに新機能を追加するまでの苦労話
masahiro331
0
240
Analyze Filesystem in Virtual Machine Image
masahiro331
0
230
SBOMを利用したソフトウェアサプライチェーンの保護
masahiro331
4
2.8k
Introduction Supply Chain Security
masahiro331
0
190
VirtualMachine Image scanning PoC with Molysis
masahiro331
0
200
Other Decks in Technology
See All in Technology
なぜ人は自分のプロジェクトを 「なんちゃってアジャイル」と 自嘲するのか
kozotaira
0
240
4人目のSREはAgent
tanimuyk
0
370
Why is RC4 still being used?
tamaiyutaro
0
280
テスト設計の本質を改めて考えてみる~生成AIを活用する時代だからこそ、作ったテストの説明性を高めよう~
yamasaki696
1
290
product engineering with qa
nealle
0
140
HookでSAST、CIでSAST、SCAでどうにかしている話 / layered-security-for-ai-written-code-with-sast-and-sca
yamaguchitk333
0
100
MySQL & MySQL HeatWave Report - June 2026
freshdaz
0
300
AIに障害切り分けを全部やってもらった。 。 。 。
estie
0
340
#エンジニアBooks 30分でわかる 「技術記事を書く技術」 / engineer-books 2026-06-30
jnchito
1
180
プロンプト_きのこカンファレンス2026_LT
yurufuwahealer
0
130
プライバシー保護の理論と実践
lycorptech_jp
PRO
1
230
NDIAS CTF 2026 問題解説会資料
bata_24
0
170
Featured
See All Featured
Typedesign – Prime Four
hannesfritz
42
3.1k
Utilizing Notion as your number one productivity tool
mfonobong
4
340
Groundhog Day: Seeking Process in Gaming for Health
codingconduct
0
230
Getting science done with accelerated Python computing platforms
jacobtomlinson
2
250
Google's AI Overviews - The New Search
badams
0
1.1k
Documentation Writing (for coders)
carmenintech
77
5.4k
Cheating the UX When There Is Nothing More to Optimize - PixelPioneers
stephaniewalter
287
14k
The SEO identity crisis: Don't let AI make you average
varn
0
510
The Straight Up "How To Draw Better" Workshop
denniskardys
239
140k
Side Projects
sachag
455
43k
YesSQL, Process and Tooling at Scale
rocio
174
15k
Impact Scores and Hybrid Strategies: The future of link building
tamaranovitovic
0
320
Transcript
ίϯςφηΩϡϦςΟπʔϧ 5SJWZͷհ ౻ଜڡ߂ʢʣ
࣍ w ࣗݾհ w ҆શͳίϯςφͱ w ίϯςφεΩϟφπʔϧ w 5SJWZͷհ w
5SJWZͷΈʹ͍ͭͯ
ࣗݾհ
౻ଜ ڡ߂ # Trivy/helmͷίϯτϦϏϡʔλ Github: @masahiro331
ࠓճͷͷഎܠ ίϯςφΞϓϦέʔγϣϯͷ ੬ऑੑΛཧ҆͠શʹ͍ͨ͠
ຊ
҆શͳίϯςφͱʁ
৴པ͞Εͨݸਓஂମ͕อक ҆શͳύοέʔδΛར༻
৴པ͞Εͨݸਓஂମ͕อक ҆શͳύοέʔδΛར༻
ίϯςφͰར༻͞ΕΔύοέʔδ w 04ύοέʔδ 31.ύοέʔδ EFCύοέʔδ FUD w ΞϓϦέʔγϣϯύοέʔδ
OQNύοέʔδ HFNύοέʔδ FUD
ίϯςφͰར༻͞ΕΔύοέʔδ w 04ύοέʔδ 31.ύοέʔδ EFCύοέʔδ FUD w ΞϓϦέʔγϣϯύοέʔδ
OQNύοέʔδ HFNύοέʔδ FUD ͜ΕΒͷύοέʔδʹ੬ऑੑ͕ແ͍͔ɺ ͘͠Өڹ͠ͳ͍͜ͱஅ͢Δඞཁ͕͋Δ
ύοέʔδͷ੬ऑੑΛೝࣝ͢Δඞཁ͕͋Δ ͦͷͨΊʹ
ύοέʔδͷ੬ऑੑΛೝࣝ͢Δඞཁ͕͋Δ ίϯςφεΩϟϯπʔϧͰ੬ऑੑͷࣗಈݕ ͦͷͨΊʹ
ίϯςφͷεΩϟϯπʔϧҰཡ w 5SJWZ w $MBJS w "ODIPSF&OHJOF w 2VBZ w
.JDSP4DBOOFS w %PDLFS)VC w ($3
ίϯςφεΩϟϯπʔϧͱͯ͠5SJWZΛ࠾༻
5SJWZͱ w LORZGࢯ͕։ൃͨ͠ίϯς φεΩϟϯπʔϧ w ଞͷεΩϟϯπʔϧͱൺֱͯ͠ ಋೖ͕༰қ w ΞϓϦέʔγϣϯύοέʔδͷ ੬ऑੑݕՄೳ
w ಠࣗͷํ๏Ͱ"MQJOFͷ੬ऑੑΛ ݕ͍ͯ͠ΔͨΊਫ਼͕ߴ͍ LORZGࢯ
֤εΩϟϯπʔϧͷݕূ݁Ռ ࢀߟใIUUQTHJUIVCDPNLORZGUSJWZPWFSWJFX
֤εΩϟϯπʔϧͷݕূ݁Ռ ࢀߟใIUUQTHJUIVCDPNLORZGUSJWZPWFSWJFX ΞϓϦέʔγϣϯ ύοέʔδΈΕΔ
5SJWZͷରԠύοέʔδ w (FN fi MFMPDL SVCZ w 1JQ fi
MFMPDL QZUIPO w 1PFUSZMPDL QZUIPO w $PNQPTFSMPDL 1)1 w 1BDLBHFMPDLKTPO KBWBTDSJQU w ZBSOMPDL KBWBTDSJQU w $BSHPMPDL 3VTU
֤εΩϟϯπʔϧͷݕূ݁Ռ ࢀߟใIUUQTHJUIVCDPNLORZGUSJWZPWFSWJFX ಋೖ͕༰қ
5SJWZͷಋೖ
5SJWZͷ͍ํ
֤εΩϟϯπʔϧͷݕূ݁Ռ ࢀߟใIUUQTHJUIVCDPNLORZGUSJWZPWFSWJFX ݕਫ਼͕ߴ͍
֤εΩϟϯπʔϧͷݕূ݁Ռ ࢀߟใIUUQTHJUIVCDPNLORZGUSJWZPWFSWJFX $*্Ͱ͍͍͢
5SJWZͷΈʹ͍ͭͯհ
5SJWZͷߏ %PDLFS3FHJTUSZ ᶅ੬ऑੑݕ ੬ऑੑ%# ᶃ੬ऑੑใͷऔಘ ᶄ%PDLFS-BZFSΛऔಘ͠ *NBHFΛΈཱͯΔ
੬ऑੑ%# %PDLFS3FHJTUSZ ᶃ੬ऑੑใͷऔಘ ᶅ੬ऑੑݕ ੬ऑੑ%#ʹ͍ͭͯ ᶄ%PDLFS-BZFSΛऔಘ͠ *NBHFΛΈཱͯΔ
੬ऑੑ%#ʹ͍ͭͯ w ੬ऑੑใHJUIVCϦϙδτϦͰཧ͍ͯ͠Δ w 5SJWZॳճىಈ࣌ʹ੬ऑੑใΛDMPOF͢Δ w ࣍ճىಈҎ߱HJUͷࠩΞοϓσʔτ w ϩʔΧϧͷσʔλϕʔεͱͯ͠CCPMU%#Λ༻
ॳճ࣮ߦ࣌ʹHJUIVC͔Β੬ऑੑใΛऔಘ ੬ऑੑϦϙδτϦ $BDIFWVMOMJTU HJUDMPOF
࣍ճҎ߱HJUQVMMͰͷࠩߋ৽ ੬ऑੑϦϙδτϦ $BDIFWVMOMJTU HJUQVMM
੬ऑੑใ$JSDMF$*Ͱఆظߋ৽ ੬ऑੑϦϙδτϦ $BDIFWVMOMJTU $SPO+PCͰͷߋ৽ ੬ऑੑσʔλιʔε 5SBWJT$*
HJUϦϙδτϦΛܦ༝͢Δཧ༝ w ੬ऑੑσʔλιʔε 3FE)BU4FDVSJUZ%BUB ͳͲ ͷλΠϜΞτ͕ϢʔβʹӨڹ͢ΔͷΛΛ͙ͨΊ w ߋ৽σʔλΛࠩΞοϓσʔτ͢Δ͜ͱ͕Մೳ
%PDLFS*NBHFͷղੳʹ͍ͭͯ
੬ऑੑ%# %PDLFS3FHJTUSZ ᶃ੬ऑੑใͷऔಘ ᶅ੬ऑੑݕ %PDLFS*NBHFͷղੳʹ͍ͭͯ ᶄ%PDLFS-BZFSΛऔಘ͠ *NBHFΛΈཱͯΔ
%PDLFS*NBHFͷղੳʹ͍ͭͯ w 5SJWZҎԼͷεςοϓͰ%PDLFS*NBHFΛղੳ %PDLFS3FHJTUSZ͔Β*NBHF-BZFSΛऔಘ *NBHF-BZFSΛΈཱͯͯϑΝΠϧΛऔΓग़͢ ੬ऑੑݕʹඞཁͳϑΝΠϧΛऔಘ ECJOTUBMMFE
(FN fi MFMPDLͳͲ w "MQJOFʹ͍ͭͯ36/ίϚϯυղੳ͢ΔͨΊελςΟοΫϦ ϯΫ͞ΕͨϥΠϒϥϦͷ੬ऑੑݕ
'30.DPNQPTFSBMQJOF "%%DPNQPTFSMPDLQIQBQQDPNQPTFSMPDL $.%<CJOCBTI> ྫ͑͜Μͳ%PDLFS fi MF
*NBHF-BZFSΛऔಘ͢Δ '30.DPNQPTFS "%%DPNQPTFSMPDL 36/CJOCBTI
*NBHF-BZFSΛੵΈॏͶ*NBHFΛ࡞ %PDLFS*NBHF '30.DPNQPTFS "%%DPNQPTFSMPDL 36/CJOCBTI
*NBHF͔Βొͨ͠ϑΝΠϧΛऔΓग़͢ %PDLFS*NBHF $PNQPTFSMPDL BMQJOFSFMFBTF ECJOTUBMMFE '30.DPNQPTFS "%%DPNQPTFSMPDL 36/CJOCBTI
੬ऑੑ%# %PDLFS3FHJTUSZ ᶃ੬ऑੑใͷऔಘ ᶅ੬ऑੑݕ ੬ऑੑݕʹ͍ͭͯ ᶄ%PDLFS-BZFSΛऔಘ͠ *NBHFΛΈཱͯΔ
(FN fi MFMPDL ΠϯετʔϧࡁΈύοέʔδΛύʔε (&. SFNPUFIUUQTSVCZHFNTPSH TQFDT BDUJPODBCMF
BDUJPOQBDL OJPS d XFCTPDLFUESJWFS BDUJPONBJMFS BDUJPOQBDL BDUJPOWJFX BDUJWFKPC NBJM d SBJMTEPNUFTUJOH d 1JQ fi MFMPDL BNRQ\ IBTIFT< TIBCFC TIBBCD > WFSTJPO ^ BVUPQFQ\ IBTIFT< TIBECC > WFSTJPO ^ $2C[FL,/CH/R6K$S%+LPH71%H 1MJCTTM 7DS "Y@ 4 * 544-TIBSFEMJCSBSJFT 6IUUQTXXXPQFOTTMPSH -0QFO44- PPQFOTTM N5JNP5FSBTUJNPUFSBT!JLJ fi U DCCCCDEDBCCFFFCC %TPMJCDNVTMY@TPTPMJCDSZQUPTP QTPMJCTTMTP SMJCSFTTM 'MJC 3MJCTTMTP B ;24I29.-(31(CR%Q8;/-Y/N#V5 'VTS 'VTSMJC 3MJCTTMTP B ;2KQFZQ)0H.JIXM(1NND ECJOTUBMMFE
੬ऑੑ%#͔Βऔಘͨ͠σʔλͱಥ߹ (FN fi MFMPDL (&. SFNPUFIUUQTSVCZHFNTPSH TQFDT BDUJPODBCMF
BDUJPOQBDL OJPS d XFCTPDLFUESJWFS BDUJPONBJMFS BDUJPOQBDL BDUJPOWJFX 1JQ fi MFMPDL BNRQ\ IBTIFT< TIBCFC TIBBCD > WFSTJPO ^ BVUPQFQ\ $2C[FL,/CH/R6K$S%+LPH71%H 1MJCTTM 7DS "Y@ 4 * 544-TIBSFEMJCSBSJFT 6IUUQTXXXPQFOTTMPSH -0QFO44- PPQFOTTM N5JNP5FSBTUJNPUFSBT!JLJ fi U DCCCCDEDBCCFFFC C %TPMJCDNVTMY@TPTPMJCDSZQUPTP QTPMJCTTMTP SMJCSFTTM 'MJC 3MJCTTMTP ECJOTUBMMFE ੬ऑੑใ
࠷ޙʹ w 5SJWZγϯϓϧͳ੬ऑੑݕ͚ͩΛఏڙ w ͜ͷػೳΛར༻ͯ͠৽ͨͳ%FW4FD0QTπʔ ϧͷ։ൃͳͲظͰ͖Δ w ͜ͷػೳΛར༻ͯ͠LVCFSOFUFTڥͷ੬ऑੑ ݕΛࣗಈԽ͍ͨ͠
͓ΘΓ