Aqua News Aqua Security's Trivy Integrates with Docker Desktop to Help Developers Easily Identify Vulnerabilities

Aqua’s Trivy extension for Docker Desktop brings seamless vulnerability scanning into developer workflows, eliminating friction and enabling more secure cloud native application development

BOSTON — May 10, 2022Aqua Security, the leading pure-play cloud native security provider, today announced that it has joined the Docker Extensions Program to allow developers to easily check their resources and dependencies for vulnerabilities. Docker Extensions demonstrates Docker’s commitment to improving the developer experience by bringing the tools developers use most to an environment where they can more easily focus on innovation, and less time on everything else. Now with Aqua Trivy, Docker users can quickly scan both their own resources and third-party code and container images for vulnerabilities, so they can prevent attacks and remain focused on innovation.

“Aqua was one of the first third-party vendors to provide security controls for Docker container environments, and we continue to expand capabilities to provide new value for this important user community,” said Amir Jerbi, CTO, Aqua Security. “This new integration brings the power of Aqua’s open source community to Docker Desktop users, making it easier to secure Docker environments and stop attacks with industry leading vulnerability scanning through Trivy.”

The new extension enables Docker Desktop users to access Trivy directly through the dashboard — no CLI needed — to quickly and easily parse and scan an unlimited number of container images. Scan results include vulnerability findings for both operating systems and programming language packages.

Aqua’s Trivy Extension for Docker Desktop brings vulnerability scanning right into developer workflows, eliminating friction, so they can confidently build more secure cloud native applications.

Trivy is the most comprehensive, easy-to-use vulnerability scanner, covering more languages, OS packages and application dependencies than other scanners. It provides fast, stateless scanning with no prerequisites for installation, and delivers highly accurate results with broad and accurate coverage.

“Docker is obsessed with developer ergonomics and is committed to filling and improving the developer experience gap,” said Webb Stevens, Docker’s SVP of Secure Software Supply Chain. “We welcome Aqua Security to the Docker Extension marketplace, expanding the applications and capabilities available for millions of registered Docker developers.”

Docker Extensions allow developers to easily discover and integrate new functionality and additional developer tools into Docker Desktop. With Docker Extensions, they can add debugging, testing, networking, security, and other tools to their Docker Desktop installation to support development workflow and improve productivity.

Docker Extensions offer a breadth of familiar experiences that integrate with Docker Desktop so they can speed up innovation without having to learn new patterns. Docker Extensions are built with the developer experience in mind and include official tools built by Docker and the company’s trusted ecosystem partners, giving developers the convenience and flexibility to create workflows that meet their individual development needs.

Register for Aqua’s Docker Extension lightning talk here during DockerCon on May 9-10, 2022.

Read more about how to use the Aqua-Docker Extension Integration for unlimited scans on the company blog or watch this tutorial from Aqua Developer Advocate Anais Urlichs.

Aqua Trivy is the world’s most popular vulnerability scanner and is built on the largest cloud native security community with 100k users. To learn more about Trivy, visit the Aqua website.

About Aqua Security

Aqua Security stops cloud native attacks. As the pioneer and largest pure-play cloud native security company, Aqua helps customers unlock innovation and build the future of their business. The Aqua Platform is the industry’s most integrated Cloud Native Application Protection Platform (CNAPP) securing the entire application lifecycle through prevention, detection and response. Founded in 2015, Aqua is headquartered in Boston, MA and Ramat Gan, IL with Fortune 1000 customers in over 40 countries. For more information, visit www.aquasec.com.

About Docker, Inc.

Docker helps millions of developers efficiently and collaboratively build, share and run applications. The Docker collaborative application development platform provides developers with an unmatched experience for an integrated, reliable and secure workflow that accelerates app delivery from code to the cloud. Through a combination of the world’s largest marketplace of components and integrations with leading tools, Docker allows teams to rapidly create innovative applications. For more information, visit www.docker.com.