Security experts as well as many — if not most — developers and software engineers know that an organization deploying software is almost inevitably working with insecure code. Code and applications are often rife with vulnerabilities throughout the https://thenewstack.io/ci-cd/ process.
Intuitively, it may seem rational to rely on a common vulnerability scoring system (CVSS) to prioritize the severity of vulnerabilities.
Relevancy and prioritization allow ARMO Platform and Kubescape users to deprioritize vulnerabilities that belong to unused software packages and components.
This release is also important given that, on average, it takes weeks or even longer to apply fixes to security.