NeuVector by SUSE release 5.2 is now available!

I am pleased to announce the availability of version 5.2 of the NeuVector container security platform. This release packs a significant number of valuable enhancements and bug fixes for users requiring full-lifecycle security for their Kubernetes container pipeline and deployments. 

Vulnerability scanning and admission controls are critical NeuVector features for ensuring supply chain security. In NeuVector 5.2, users can require NeuVector to verify that images are signed by specific parties before they can be deployed into the production environment, through an integration with Sigstore/Cosign. Scanning enhancements include a pluggable Harbor adapter, a new CVE database lookup service, and scanning of Golang dependencies.

As we recently announced, NeuVector 5.2 supports monthly usage-based billing through the AWS Marketplace and will be followed by similar billing options through Google Cloud and Microsoft Azure. As we see increased public cloud and hybrid cloud usage for business-critical workloads, our customers are requesting convenient billing options for NeuVector subscriptions. 

We continue to enhance the security of NeuVector itself by supporting token-based access to the REST API (in addition to username/password), admin controls of user sessions and passwords, encrypted (TLS) SYSLOG alerts, and distinct least-privileged permissions for each of the NeuVector containers. 

NeuVector 5.2 also continues support of regulated and government use cases where customizable login banners, logos and agreements as well as classification headers and footers ensure proper access to NeuVector. 

Other enhancements for NeuVector paid subscription customers include: 

• A new Vulnerability (CVE) Database lookup service.  This new SaaS service provides an online database lookup for any CVE in the latest NeuVector CVE database. It also provides views of vulnerabilities by OS, application, package or library as well as unfixed vulnerabilities. This service can be accessed by requesting it through the SUSE Customer Center (SCC) and the SUSE Collective service for customers.
• Advanced performance and tuning guide and advice. Also available through SUSE Collective is a new performance-tuning asset to assist customers with properly sizing and tuning deployments of NeuVector in large clusters, edge (constrained resource), or heavy security feature usage environments. Support subscribers can also query the NeuVector support team for assistance as well as engage SUSE professional services for more complex deployments. 

We’re excited to bring these security enhancements to the Kubernetes and container community to help our users worldwide achieve the visibility, protection, and defence in depth needed for critical cloud-native workloads. 

NeuVector is available on docker hub with full documentation available and helm-based installations supported.