Aikido Security

Aikido supports scanning GCP Artifact images through both the GCP scanner and the Aikido Scanner. Opting for the Aikido Scanner provides several benefits:

Extended Scanning Capabilities: Scans for licenses and end-of-life (EOL) runtimes for comprehensive security insights.

Quicker Results: Delivers scan results promptly to accelerate development and deployment processes.

Targeted Scanning Efficiency: Allows scanning based on specific tags, enhancing relevance and efficiency.

Continuous Scanning: Unlike GCP, which scans once at the moment of push, Aikido performs daily scans—even if your image hasn't been updated in a while. This means Aikido can identify new Common Vulnerabilities and Exposures (CVEs) in the meantime, which GCP might miss.

Inclusive Pricing: Included in every paid plan, offering unlimited scans without the additional costs associated with GCP's pay-per-push model.

- Extended Scanning Capabilities: Scans for licenses and end-of-life (EOL) runtimes for comprehensive security insights.
- Quicker Results: Delivers scan results promptly to accelerate development and deployment processes.
- Targeted Scanning Efficiency: Allows scanning based on specific tags, enhancing relevance and efficiency.
- Continuous Scanning: Unlike GCP, which scans once at the moment of push, Aikido performs daily scans—even if your image hasn't been updated in a while. This means Aikido can identify new Common Vulnerabilities and Exposures (CVEs) in the meantime, which GCP might miss. 
- Inclusive Pricing: Included in every paid plan, offering unlimited scans without the additional costs associated with GCP's pay-per-push model.

Navigate to <a href="https://app.aikido.dev/containers" rel="nofollow noopener noreferrer" target="_blank">Containers Page</a>

Connect Registry: Click on 'Connect registry' and select the first option: 'GCP artifact registry'.

Fill in the Details: Create a service account called 'AikidoContainerReader' and give it the role of "Artifact Registry Reader" Once the service account is created, you'll need to generate an access key and upload it to Aikido. This key will be used by Aikido to make the necessary API requests to scan your resources. ​

Completion: Once the setup is complete, Aikido will scan the connected registry with the Aikido scanner on a nightly basis.. ​

1. Navigate to <a href="https://app.aikido.dev/containers" rel="nofollow noopener noreferrer" target="_blank">Containers Page</a> 
2. Connect Registry: Click on 'Connect registry' and select the first option: 'GCP artifact registry'.
3. Select Aikido Scanner. 

4. Fill in the Details: Create a service account called 'AikidoContainerReader' and give it the role of "Artifact Registry Reader" Once the service account is created, you'll need to generate an access key and upload it to Aikido. This key will be used by Aikido to make the necessary API requests to scan your resources. ​
 
 ​
5. Completion: Once the setup is complete, Aikido will scan the connected registry with the Aikido scanner on a nightly basis.. ​

This article explains how you can check your docker images hosted on GCP Artifact Registry for OS vulnerabilities

Introduction

Installing the Aikido Scanner