ActiveState joins a growing community of organizations collaborating with Aqua to advance Trivy, the world’s most popular open source vulnerability scanner. Together, ActiveState and Trivy help reduce the noise associated with CVE alerts by integrating ActiveState’s advisory feed into the scanning process. Trivy users can now see an accurate risk profile for any ActiveState open source artifacts they use. The advisory feed also includes VEX (Vulnerability Exploitability eXchange) information, enabling Trivy to suppress CVEs that have been fully investigated and deemed non-exploitable by ActiveState. When valid CVEs are found, Trivy users will also receive remediation options provided by ActiveState for affected containers and language packages.
Aqua Security is the pioneer in securing containerized cloud native applications from development to production. Aqua's full lifecycle solution prevents attacks by enforcing pre-deployment hygiene and mitigates attacks in real time in production, reducing mean time to repair and overall business risk. The Aqua Platform, a Cloud Native Application Protection Platform (CNAPP), integrates security from Code to Cloud, combining the power of agent and agentless technology into a single solution. With enterprise scale that doesn’t slow development pipelines, Aqua secures your future in the cloud. Founded in 2015, Aqua is headquartered in Boston, MA and Ramat Gan, IL protecting over 500 of the world’s largest enterprises.
