Cluttered is a state no one wants to be in, from your home to your cloud environments. Many applications do not use native Kubernetes workloads, and instead deploy individual pods. Each line for each pod can add up, leading DevSecOps teams to see replicas of the same instances the way that it shows up in Kubernetes – making it look like there are more violations than there are. This can result in uneven performance, unnecessary noise, and frustration for all.
Reduce Noise with Virtual Workloads
VMware has introduced a new capability for virtual workloads to help reduce noise for DevSecOps teams. With VMware Carbon Black Container, users can now identify these groups as they are aggregated together in one instance. This virtual workload will show everything you are used to viewing for a specific containerized workload in Carbon Black Container including, risk score, exceptions, and hierarchy. The best part is, there is no need to declare a virtual workload – Carbon Black will do it for you.
Take the airflow application for example. When you deploy airflow, multiple pods will be created, resulting in that unwanted clutter. Carbon Black Container takes those pods and groups them together. You can see the result in the screenshot below for airflow with the name airflow-virtual-workload-1. Now, instead of dealing with multiple pods on multiple lines, you can apply a security policy to all airflow pods simply by referencing the newly created virtual workload.
Virtual workloads can be identified by the following icon on all pages:
To see this in action, watch a short demo, and learn more about this capability by reading our technical release notes and checking out VMware Carbon Black Container here.