Security Monitoring

• Images

• Vulnerabilities

Images

You can review images present in the monitored cluster on the Images tab. In the Entity Explorer, open the Kubernetes Cluster Details page and click Security > Images. Namespaces that are filtered out in the SWO K8s Collector settings are not scanned.

You can view the name, tags, digest, pods, and detected vulnerabilities for each image.

To view image data, make sure manifest collection is enabled when adding the Kubernetes cluster to SolarWinds Observability SaaS. For more information, see Monitor a cluster using the wizard.

Vulnerabilities

SolarWinds Observability SaaS can detect compatible vulnerability scan results in monitored Kubernetes clusters. When detected, the result are visible on Kubernetes cluster details pages, Kubernetes workload details pages, and in the list of detected container images.

SolarWinds Observability SaaS supports image vulnerability scans provided by Aqua Security Trivy Operator. You can deploy the operator separately or as part of the SWO K8s Collector.

To deploy the Trivy Operator as part of the SWO K8s Collector, use the Helm setting trivy-operator.enabled: true.