Vulnerability Management

Automated image scanning and blocking. Active risk mitigation. Monitor and assess workloads for new and existing CVEs 24/7.



Plug-and-play container security platform that actively prevents, detects, and mitigates security breaches in container-based applications

Automated Vulnerability Management

Automatically detect and block vulnerable images and allow exceptions

Detect, Block, and Prioritize

Contextual runtime view of vulnerable workloads to assess risk and prioritize mitigation

Actively Mitigate Exposure Risks

Mitigate and isolate threats as they happen and keep your services running

Trusted by Customers Worldwide

Calico is the chosen active security platform for enterprises small and large

Scan Images for Vulnerabilities

Scan images to identify vulnerabilities and misconfigurations before deploying them to production.

Automatically block vulnerable images from getting deployed and define exceptions for vulnerabilities that are deemed low risk based on usage.

Monitor Vulnerable Workloads at Runtime

Correlate vulnerability scans with a real-time view of the workloads in your Kubernetes clusters and associated risks.

Assess and rank the risk of deployed workloads as new vulnerabilities are discovered and reported.

Active Risk Mitigation with Calico Security Policies

Mitigate risks from vulnerabilities using security policies that can alert, pause, or quarantine infected pods.

Limit service disruption and loss while remediation happens.

Automated Blocking with Admission Controller

Automatically block the deployment of pods that contain high-risk vulnerabilities.

Reduce the risk of deploying vulnerable software to container platforms and ensure that application teams take the necessary steps to update software and associated images.

Available on Microsoft Azure and AWS Marketplace

Get started right away on Azure or AWS—every Calico component you need to get up and running is ready to go.

Customer Testimonial

Here’s what our customers are saying about us

Tigera is our zero-trust security partner. Whatever Box does with its Kubernetes clusters, Calico is always a key component.
Tapas Mohapatra
Sr. Manager, Site Reliability Engineering, Cloud & Kubernetes,
Read Customer Stories

Featured Resources

Developer-created resources to help you secure your Kubernetes deployment

Learn Guide

What Is Container Security? 8 Best Practices You Must Know

Learn how to secure Docker, Kubernetes, and all major elements of the modern container stack.
Read More

Tigera Tutorials

From security issues to observability challenges, learn how to address pain points in our hands-on tutorials.
Read More

Calico Cloud Datasheet

Find out what makes Calico Cloud the industry’s only active security platform with full-stack observability.
Read More
All Resources

Ready to Get Started?

Start a free trial or contact us to see Calico in action