February 2025 Edition of Kodem Kernels

‍Code Repository Configuration

The new Code Repository Configuration tab empowers all users to customize how data is viewed and managed, particularly for monorepos.

This feature empowers teams to:

• Configure monorepos into smaller projects for each manifest file and gain clear visibility into each repository's manifest files and folder tree, simplifying management.
• Manually correlate deployed images to projects for better results and control over your security practices, ensuring a comprehensive understanding of the code’s operational context.
• Achieve runtime indications at the repository level and benefit from more accurate fix suggestions, leveraging the new visibility from code to image.
• Exclude specific paths from scans for targeted scanning in any repository, optimizing scanning strategies and resource utilization.

Enhanced Runtime Evidence

The enhanced Runtime Evidence tab provides deeper insights into why issues are classified as runtime, enabling teams to prioritize vulnerabilities more effectively.

With this feature you can:

• Understand the runtime context of issues with detailed evidence, including executed processes, loaded files and functions with vulnerable components, eliminating guess work about theoretical vs. actual risk.
• Observe instances across multiple environments and download recent observations with timestamped runtime evidence, including full execution context, container image and environment details.
• Validate vulnerability exploitation paths by tracking function calls in memory, allowing teams to prioritize fixes based on real runtime data.

Workflows & Webhooks

The new Workflows feature automates processes and reduces manual overhead, empowering teams to streamline their security operations.

With Workflows, you can:

• Set up resource-specific workflows tailored to your unique requirements, ensuring alignment with your organization's processes and policies.
• Define event-driven triggers to initiate workflows automatically, such as new or modified open-source issues and new code issues, enabling proactive issue management.
• Add granular control with conditions based on issue attributes like severity, score, EPSS, and runtime, allowing for targeted and efficient workflow execution.
• Integrate seamlessly with existing systems using webhooks, facilitating real-time notifications and collaboration with other tools and teams.

{{demo-video="/314695942731"}}

‍