Vulnerability Management at Lyft: Enforcing the Cascade [Part 1]

Vulnerability Management at Lyft: Enforcing the Cascade - Part 1Converting container scan data into tickets, linked with automated pull requestsAbstractOver the past 2 years, we’ve built a comprehensive vulnerability management program at Lyft. This blog post will focus on the systems we’ve built to address OS and OS-package level vulnerabilities in a timely manner across hundreds of services run on Kubernetes. Along the way, we’ll highlight the technical challenges we encountered and how we eli...