Techniques described herein leverage current cloud native application protection platform (CNAPP) capabilities, as well as generative AI, to identify the specifics of common vulnerabilities and exposures (CVE) reports and utilize custom continuous integration/continuous delivery (CI/CD) plug-ins to remediate affected software image layers within vulnerable containerized workloads. Additionally, the techniques provide for automatically provisioning new instances of patched containers and incrementally steering traffic toward these containers, while monitoring their health and responsiveness, via a canary-style of deployment.

Creative Commons License

Creative Commons License
This work is licensed under a Creative Commons Attribution 4.0 License.