v1.0 for Steampipe, Powerpipe, Flowpipe, 116 plugins, and 44 mods →
Powerpipe Hub 
Hub
Mods
turbot/ibm_compliance
Overview
1Dashboards
67Controls
20Queries
0Variables
GitHub

Control: 9.1 Ensure alerts are enabled for vulnerabilities discovered in container images in Container Registry

Description

With IBM CloudTM Security Advisor, you can instantly view the security posture of your IBM Cloud services through a single, centralized dashboard. The service receives security information from various sources and displays any security alerts or vulnerabilities that require your attention in the service dashboard. Out of the box, there are several pre-populated cards in your dashboard. These findings are from security services in IBM Cloud, but you can also add cards or custom partner solutions so that all of your security tools can be accessed from the same location.

Through pre-integrated findings, you can monitor:

  1. Certificates that you manage with IBM Cloud Certificate Manager
  2. Vulnerabilities in container images that are stored in IBM Cloud Container Registry

Remediation

All remediation steps must be applied to the vulnerability in the container image by image owners.

Console:

  1. Log in to IBM Cloud at https://cloud.ibm.com.
  2. Click Menu icon > Security and Compliance.
  3. In the Gain insight section of the navigation, click Configure-->Alerts.
  4. Click Create channel.
  5. Provide a Name, optional Description, and Channel endpoint.
  6. Under Severity for notifications, Select Critical, High, and Medium
  7. Click Save.

Usage

Run the control in your terminal:

powerpipe control run ibm_compliance.control.cis_v100_9_1

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run ibm_compliance.control.cis_v100_9_1 --share

SQL

This control uses a named query:

manual_control

Tags

category = Compliance
cis = true
cis_item_id = 9.1
cis_level = 1
cis_section_id = 9
cis_type = automated
cis_version = v1.0.0
plugin = ibm
service = IBM/SCC