Auto-Discover
Finds container images across your entire cluster — Pods, Deployments, StatefulSets, DaemonSets, ReplicaSets, CronJobs, and more. No manual config needed.
What It Does
Scan with Grype
Powered by Grype under the hood. Identifies CVEs across your images, flags severity levels from Critical to Negligible, and shows available fixes at a glance.
Intuitive Dashboard
Paginated findings table with severity badges, expandable descriptions, and instant search. Built with HTMX and Alpine.js for a snappy, modern UI.
How It Works
1
Connect
Point Kube Shield at your cluster via kubeconfig or in-cluster config. AWS ECR credentials are detected automatically.
2
Scan
Images are discovered across all resource types and scanned for vulnerabilities. Results stream to the dashboard in real time.
3
Remediate
Review findings by severity, see which images are affected, and check available fixes. Prioritize what matters, fix with confidence.