Container policies

Endor Labs provides the following policies to help assess and improve the security posture of your container images. This policy scans container images to detect operating system dependencies or components that have reached end of life (EOL). Endor Labs disables this policy by default. Enable it in Finding Policies. If a dependency reaches EOL after the initial scan, containers do not need to be re-scanned. The analytics scan automatically detects the change and raises a finding without requiring a rescan.

This policy detects end of life status only for OS-level packages and components.

Endor Labs provides the following container image finding policy template to detect if a base image is not permitted by an organization. See Finding Policies for details on how to create policies from policy templates.

Finding policies

License policies

⌘I

Introduction

Setup & Deployment

Inventory & Insights

Scan with Endor Labs

Risk Remediation

Integrations

AI Security & Governance

Platform Administration

Best Practices

Research Open Source Risks

Trust & Compliance

Introduction

Setup & Deployment

Inventory & Insights

Scan with Endor Labs

Risk Remediation

Integrations

AI Security & Governance

Platform Administration

Best Practices

Research Open Source Risks

Trust & Compliance

Documentation Index