Scanning Hetzner with Aikido

Aikido fully supports protecting workloads on Hetzner through specific integrations. A native integration may be added in the future, but you can already achieve full coverage by combining:

Container image scanning for OCI-compatible registries hosted on Hetzner
Kubernetes cluster scanning for self-managed clusters
Kubernetes cluster image scanning for self-managed clusters
Virtual machine scanning via the Local VM Scanner on Hetzner instances

Features

Container image scanning

Scan third-party registries that are OCI-compatible and hosted on Hetzner. Follow the OCI guide below to configure container image scanning

Generic OCI-Compatible Registry

Kubernetes cluster scanning

If you run your own Kubernetes clusters on Hetzner VMs, you can connect them as generic Kubernetes clusters.

Kubernetes Cluster Scanning

Kubernetes cluster image scanning

If you run your own Kubernetes clusters on Hetzner VMs, you can scan the images of running containers with Kubernetes image scanning.

Kubernetes In-Cluster Image Scanning

Virtual Machine scanning

To scan Virtual Machines on Hetzner, use the Local VM Scanner. It inspects packages, system dependencies and configuration directly on the instance.

Local VM Scanning

You can roll this out centrally using your usual automation tooling (e.g. Ansible, Terraform-provisioned scripts, or cloud-init) so that new Hetzner instances are automatically enrolled.

Last updated 10 hours ago

Was this helpful?