US 12,475,220 B1
System and method for identifying cybersecurity risk source in container image layers
Yaniv Shaked, Tel Aviv (IL); Gal Kozoshnik, Petah Tikva (IL); Yaniv Joseph Oliver, Tel Aviv (IL); Amir Lande Blau, Tel Aviv (IL); and Jonathan Dong, Amsterdam (NL)
Assigned to Wiz, Inc., New York, NY (US)
Filed by Wiz, Inc., New York, NY (US)
Filed on May 16, 2024, as Appl. No. 18/666,460.
Int. Cl. H04L 29/06 (2006.01); G06F 21/55 (2013.01); G06F 21/57 (2013.01)
CPC G06F 21/554 (2013.01) [G06F 21/577 (2013.01); G06F 2221/033 (2013.01)] 15 Claims
OG exemplary drawing
 
1. A method for detecting a cybersecurity issue in a software container layer and mitigating the same, comprising:
detecting a software container including a plurality of layers;
associating a first layer of the plurality of layers with a first image of the software container, and associating a second layer of the plurality of layers with a second image of the software container;
inspecting the entire contents of all of the plurality of layers for a cybersecurity object, wherein the cybersecurity object indicates a cybersecurity issue;
detecting the cybersecurity object on the first layer;
identifying a source image associated with the first image; and initiating a remediation action on the source image associated with the first image, in response to detecting the cybersecurity object on the first layer.