2025-10-14: Kubernetes security extends visibility and vulnerability detection

Introducing Kubernetes security  

We’re excited to introduce Kubernetes security as a new capability within our product System & Network Security! This new function expands your visibility into containerized environments and enables you to identify misconfigurations and vulnerabilities within your Kubernetes clusters.

The new capability is available for all customers using System & Network Security without additional cost. You distribute your existing licenses in your Kubernetes environment. 

With this new feature, you can: 

• Discover Kubernetes clusters across both cloud and on-premise environments. 
• Authenticate to the Kubernetes API to access configuration and workload data. 
• Scan for misconfigurations, such as overly permissive roles, insecure network policies, and other risks. 
• Identify services running inside the cluster and automatically manage them as assets within the network Asset Manager. 
• Assess discovered services for known vulnerabilities, bringing container-based infrastructure into your existing vulnerability workflows. 

By integrating Kubernetes and container service assets into the platform, this release enables a complete vulnerability management workflow, from discovery to remediation, for any Kubernetes cluster. It bridges the gap between traditional and containerized environments, giving you a unified view of your security posture across all asset types. 

To this end, we will make two new scan profiles available:  

Kubernetes scan – Standard 
Coverage for Kubernetes misconfigurations and service asset detection. 

Kubernetes scan – Extended 
Same as “Kubernetes scan – Standard” plus vulnerability detection for the detected service assets. 

Kubernetes security will be rolled out over the next couple of weeks. If you are interested in early access, please reach out to Support. 

Read how to scan a Kubernetes cluster here.