Skip to main content

Directly patch container image vulnerabilities

copa is an Open Source CLI tool written in Go and based on buildkit that can be used to directly patch container images without full rebuilds. It can also patch container images using the vulnerability scanning results from popular tools like Trivy.

Adopted by

Featured Talks

Session Presentation at KubeCon North America 2024

Session Presentation at OpenSSF SOSS Fusion Conference 2024

Project lightning talk at KubeCon North America 2024

Copacetic is a Cloud Native Computing Foundation Sandbox project

Join the Community!