Staying ahead of common vulnerabilities and exposures (CVEs) in your infrastructure is a critical part of application security—but finding them isn’t always easy. That’s why we built the free new Tetrate Vulnerability Scanner (TVS) for Istio. This free download finds and reports the CVE status of all your Istio deployments in minutes and alerts you as new vulnerabilities are discovered to make sure you’re always up to date on the latest threats.
Why TVS?
In an increasingly complex digital landscape, traditional CVE scanning tools often fall short in addressing the specific needs of network-facing services like Istio and Envoy. TVS fills this critical gap by offering targeted detection of CVEs, ensuring that your cloud environments are not just secure, but also resilient against the ever-evolving cyber threats.
Get Started with TVS Now
- Download the TVS CLI ›
- Run tvs register to get access token
- Run tvs scan to start scanning your Kubernetes clusters.
- When it’s done scanning, TVS will provide you a detailed report on the CVE status of every Istio container in your deployment (see example below):
What Sets TVS Apart?
Specialized Focus on Istio and Envoy: TVS goes beyond generic container-level vulnerability scanning. By focusing specifically on Istio and Envoy, it provides a more relevant and precise security assessment for these critical components of your network infrastructure.
Automation and Efficiency: Keeping up with the latest security notices and updates can be a daunting task. TVS automates this process, effectively reducing the manual effort required to stay informed about the latest vulnerabilities.
Privacy and Security: At Tetrate, we understand the importance of privacy. TVS is designed with this in mind, ensuring that while it logs SHA digests for image identification and CVE detection, it does not associate these with any personal data, including IP addresses.
Future-Proofing Your Security
While TVS currently supports Istio, we are committed to evolving alongside the needs of our users. We’re already working to extend TVS to protect additional products and services, ensuring that it remains an indispensable tool in your security arsenal.
Stay Updated
As we continue to innovate and expand TVS’s capabilities, stay tuned for more updates and enhancements.
Download and start using Tetrate Vulnerability Scanner for Istio now ›
###
If you’re new to service mesh, Tetrate has a bunch of free online courses available at Tetrate Academy that will quickly get you up to speed with Istio and Envoy.
Are you using Kubernetes? Tetrate Enterprise Gateway for Envoy (TEG) is the easiest way to get started with Envoy Gateway for production use cases. Get the power of Envoy Proxy in an easy-to-consume package managed by the Kubernetes Gateway API. Learn more ›
Getting started with Istio? If you’re looking for the surest way to get to production with Istio, check out Tetrate Istio Subscription. Tetrate Istio Subscription has everything you need to run Istio and Envoy in highly regulated and mission-critical production environments. It includes Tetrate Istio Distro, a 100% upstream distribution of Istio and Envoy that is FIPS-verified and FedRAMP ready. For teams requiring open source Istio and Envoy without proprietary vendor dependencies, Tetrate offers the ONLY 100% upstream Istio enterprise support offering.
Get a Demo