Announcing Kubescape 4.0 Enterprise Stability Meets the AI Era

The Kubernetes ecosystem faces a growing attack surface as workloads become more distributed and dynamic. Kubescape 4.0 addresses this challenge by delivering Runtime Threat Detection in General Availability, powered by high‑performance CEL rules that tap directly into Application Profiles. This enables real‑time monitoring of system calls, network traffic, and file system activity, while seamless integration with AlertManager, SIEMs, and webhooks ensures alerts reach existing security pipelines without friction.

A second pillar of the release is the GA of Kubescape Storage, built on the Kubernetes Aggregated API. By housing application profiles, SBOMs, and vulnerability manifests in a dedicated storage layer, the solution offloads heavy security metadata from the core etcd datastore. This architecture has been validated in high‑density, large‑scale clusters, delivering faster query response times and reducing the risk of etcd saturation—critical factors for enterprises running thousands of nodes.

Perhaps the most forward‑looking addition is the AI era integration. Kubescape now offers a KAgent‑native plug‑in that lets AI assistants enumerate vulnerabilities, suggest remediations, and observe runtime behavior through ApplicationProfiles and NetworkNeighborhoods. Simultaneously, it introduces posture scanning for AI orchestration tools, enforcing 15 Rego‑based controls across 42 critical configuration points. Coupled with updated CIS Benchmarks for vanilla Kubernetes and major cloud services, Kubescape 4.0 equips organizations to secure both traditional workloads and the next generation of AI‑driven applications.