{"id":103162,"date":"2025-08-26T08:00:00","date_gmt":"2025-08-26T06:00:00","guid":{"rendered":"https:\/\/staging.checkmarx.com\/?post_type=learn&#038;p=103162"},"modified":"2026-04-09T23:31:14","modified_gmt":"2026-04-09T21:31:14","slug":"container-vulnerability-management-cutting-through-the-noise","status":"publish","type":"learn","link":"https:\/\/checkmarx.com\/learn\/container-security\/container-vulnerability-management-cutting-through-the-noise\/","title":{"rendered":"Container Vulnerability Management: Cutting Through the Noise"},"content":{"rendered":"<p>Generating a list of security vulnerabilities inside a container image is the first step in container vulnerability management. But a vulnerability report is just that &#8211; a first step.<\/p>\n\n\n\n<p>To manage <a href=\"https:\/\/checkmarx.com\/glossary\/what-is-container-security\/\">container security<\/a> risks efficiently and at scale, DevOps and DevSecOps teams need to know more than just which security risks exist inside a container image. They also require visibility into how severe each vulnerability is, whether it\u2019s actually exploitable within their runtime environments, and so on.<\/p>\n\n\n\n<p>That, in a nutshell, summarizes what a comprehensive, scalable approach to container vulnerability management entails. For more details, keep reading as we explain why conventional approaches to container vulnerability scanning sometimes fall short, along with tips on how organizations can do better.<\/p>\n\n\n\n<h2 class=\"wp-block-heading article-anchor\" id=\"article-anchor-1\">What is container vulnerability management?<\/h2>\n\n\n\n<p>Container vulnerability management is the practice of identifying and remediating container security risks. Typically, this process focuses on scanning container images to identify components that are known to be vulnerable, based on vulnerability databases such as <a href=\"https:\/\/checkmarx.com\/learn\/appsec\/understanding-the-differences-between-nvd-and-cve\/\">NVD and CVE<\/a>. The scans produce lists of vulnerabilities. From there, DevOps and DevSecOps teams review the scan reports, determine how to mitigate the vulnerabilities, and apply relevant fixes.<\/p>\n\n\n\n<h2 class=\"wp-block-heading article-anchor\" id=\"article-anchor-2\">Common pitfalls in container vulnerability management<\/h2>\n\n\n\n<p>At first glance, the container vulnerability management process may seem easy enough: Engineers simply generate lists of vulnerabilities that impact their containers, then fix them.<\/p>\n\n\n\n<p>In reality, however, managing vulnerabilities can become a fraught task due to challenges like the following:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\n<strong>High volume of vulnerabilities<\/strong>: It\u2019s not uncommon for a single container image to be subject to hundreds of vulnerabilities. With so many risks to manage, it can become very challenging for engineers to know which container security problems to prioritize.<\/li>\n\n\n\n<li>\n<strong>Limited context<\/strong>: Many container vulnerability scanners are capable only of identifying vulnerabilities and the components associated with them. They don\u2019t provide other key context, such as whether attackers can actually exploit a vulnerability within the container environment that the organization uses.<\/li>\n\n\n\n<li>\n<strong>Generic severity ratings<\/strong>: Along similar lines, the vulnerability severity scores that some scanners provide are based on generic severity assessments in public databases. They don\u2019t reflect the degree of harm that a vulnerability exploit is likely to cause for a particular organization &#8211; and a risk that is severe in general may be minor or non-existent within a specific environment. This makes it challenging to know which vulnerabilities to prioritize when reviewing vulnerability reports.<\/li>\n\n\n\n<li>\n<strong>Lack of remediation guidance<\/strong>: Knowing a vulnerability exists is one thing. Knowing how to fix it can be quite another &#8211; and the more time DevOps and DevSecOps engineers have to spend figuring out how to implement a patch, the less efficient the vulnerability management process becomes.<\/li>\n<\/ul>\n\n\n\n<p>In short, container vulnerability scanners often generate a lot of \u201cnoise,\u201d while providing limited actionability. They tell teams that they have container security issues, but not exactly how to approach the process of prioritizing and remediating those issues.<\/p>\n\n\n<section class=\"section-block-info light-theme\">\n    <div class=\"main-wrapper block-info__wrapper\">\n        <div class=\"block-info center\">\n\t\t\t\n\t\t\t<h2 class=\"section-title article-anchor\" id=\"article-anchor-3\">Extend your AppSec strategy to protect containers<\/h2>\t\t\t<p class=\"section-description\">Containers are running everywhere, and traditional approaches to application security don\u2019t fully address the security risks that may impact them.<\/p>\n\t\t\t<div class=\"actions\">\n\t\t\t\t        <a href=\"https:\/\/checkmarx.com\/blog\/level-up-your-container-security\/\" class=\"btn btn-2 btn-bg white demo\">Learn how to level up container security for the modern enterprise<\/a>\n        \t\t\t\t\t\t\t<\/div>\n        <\/div>\n    <\/div>\n<\/section>\n\n\n<h2 class=\"wp-block-heading article-anchor\" id=\"article-anchor-4\">A better approach to managing container vulnerabilities<\/h2>\n\n\n\n<p>This is why a modern, scalable approach to container vulnerability management requires more than simply using static scanning tools to generate lists of vulnerabilities, then leaving it up to DevOps security professionals to figure out how to react. The vulnerability management process must go further by including the following key aspects, which extend beyond running scans.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Contextual scoring<\/h3>\n\n\n\n<p>Rather than settling for generic severity ratings, like <a href=\"https:\/\/checkmarx.com\/learn\/open-source-security\/what-is-common-vulnerability-scoring-system-cvss\/\">CVSS scores<\/a> pulled from databases, DevOps and DevSecOps teams should leverage scanners that can generate contextual severity scores unique to their environment.<\/p>\n\n\n\n<p>Contextual scores factor in variables such as how a particular runtime environment is configured and what an application\u2019s development pipeline looks like to provide highly relevant severity ratings. With this insight, teams can quickly determine which vulnerabilities matter most for them &#8211; as opposed to simply knowing which ones are considered severe for organizations in general.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Runtime validation<\/h3>\n\n\n\n<p>Static scanning identifies vulnerabilities by examining applications that are not running. While this is an efficient way of discovering vulnerabilities, it doesn\u2019t tell engineers which vulnerabilities are actually active among running containers.<\/p>\n\n\n\n<p>To generate that insight, teams need <a href=\"https:\/\/checkmarx.com\/blog\/container-runtime-insights-to-prioritize-what-matters-most\/\">runtime validation<\/a>. Runtime validation provides essential context about the vulnerabilities that impact an organization in the \u201chere and now,\u201d based on which containers it has running. With this visibility, engineers can focus on remediating the issues that create the largest DevOps security risks &#8211; as opposed to spending their time chasing vulnerabilities that aren\u2019t actually active.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Developer feedback<\/h3>\n\n\n\n<p>The more visibility DevOps engineers and developers have into the underlying issues that trigger a given vulnerability, the more efficiently they can address it. This doesn\u2019t just save time and reduce toil; it also minimizes the time required to remediate a security issue, which in turn reduces the risk that attackers will exploit it while it remains unpatched.<\/p>\n\n\n\n<p>To this end, the container vulnerability management process should include feedback for developers about how to remediate each risk &#8211; which software library or application dependency to update, for example, and where to find relevant patches. Guidance like this is another crucial requirement for closing the gap between <a href=\"https:\/\/checkmarx.com\/glossary\/what-is-enterprise-application-security\/\">enterprise application security<\/a> visibility and actionability.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Security that integrates into software development<\/h3>\n\n\n\n<p>Waiting to discover container security vulnerabilities until after developers have written and built an image is not efficient. Teams that take that approach end up having to go back to square one, updating application source code, then rebuilding images, whenever they need to address a vulnerability.<\/p>\n\n\n\n<p>A better approach is to \u201c<a href=\"https:\/\/checkmarx.com\/blog\/how-realtime-appsec-improves-developer-productivity\/\">shift left<\/a>\u201d by identifying container security issues during the development process. For example, by providing real-time feedback to developers about which open-source container images are insecure, it becomes possible to minimize the number of vulnerabilities that make their way into an organization\u2019s container environments in the first place &#8211; thereby saving time, improving the developer experience, and minimizing security risks.<\/p>\n\n\n<section class=\"section-block-info light-theme\">\n    <div class=\"main-wrapper block-info__wrapper\">\n        <div class=\"block-info center\">\n\t\t\t\n\t\t\t<h2 class=\"section-title article-anchor\" id=\"article-anchor-5\">Take charge of container security<\/h2>\t\t\t<p class=\"section-description\">The complexity of containers means that securing cloud-native apps requires a multi-pronged solution that mitigates threats from code to cloud.<\/p>\n\t\t\t<div class=\"actions\">\n\t\t\t\t        <a href=\"https:\/\/checkmarx.com\/product\/container-security\/\" class=\"btn btn-2 btn-bg white demo\">Protect containerized apps across all stages of the SDLC with Checkmarx One<\/a>\n        \t\t\t\t\t\t\t<\/div>\n        <\/div>\n    <\/div>\n<\/section>\n\n\n<h2 class=\"wp-block-heading article-anchor\" id=\"article-anchor-6\">A modern, scalable approach to container security<\/h2>\n\n\n\n<p>Traditional approaches to container vulnerability management lack the efficiency and scalability to work at enterprise scale. That\u2019s why Checkmarx provides a holistic <a href=\"https:\/\/checkmarx.com\/product\/container-security\/\">container security solution<\/a> that not only identities risks, but also helps teams fix them fast. Learn more by <a href=\"https:\/\/checkmarx.com\/request-a-demo\/\">requesting a demo<\/a>.<\/p>\n\n\n\n<p><\/p>","protected":false},"author":141,"featured_media":103163,"parent":0,"menu_order":0,"template":"","meta":{"_acf_changed":true,"footnotes":""},"learn-cat":[864],"class_list":["post-103162","learn","type-learn","status-publish","has-post-thumbnail","hentry","learn-cat-container-security"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.1.1 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Container Vulnerability Management: Cutting Through the Noise<\/title>\n<meta name=\"description\" content=\"Learn why conventional approaches to container vulnerability scanning sometimes fall short, and how organizations can do better.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/checkmarx.com\/learn\/container-security\/container-vulnerability-management-cutting-through-the-noise\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Container Vulnerability Management: Cutting Through the Noise\" \/>\n<meta property=\"og:description\" content=\"Learn why conventional approaches to container vulnerability scanning sometimes fall short, and how organizations can do better.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/checkmarx.com\/learn\/container-security\/container-vulnerability-management-cutting-through-the-noise\/\" \/>\n<meta property=\"og:site_name\" content=\"Checkmarx\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/Checkmarx.Source.Code.Analysis\" \/>\n<meta property=\"article:modified_time\" content=\"2026-04-09T21:31:14+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/08\/Why-Your-Container-Scans-Could-be-Lying-to-You.webp\" \/>\n\t<meta property=\"og:image:width\" content=\"2033\" \/>\n\t<meta property=\"og:image:height\" content=\"1017\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/webp\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:site\" content=\"@checkmarx\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/checkmarx.com\/learn\/container-security\/container-vulnerability-management-cutting-through-the-noise\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/checkmarx.com\/learn\/container-security\/container-vulnerability-management-cutting-through-the-noise\/\"},\"author\":{\"name\":\"Emma Datny\",\"@id\":\"https:\/\/checkmarx.com\/#\/schema\/person\/f2f13af2bbd7334f86e05c26025b82cc\"},\"headline\":\"Container Vulnerability Management: Cutting Through the Noise\",\"datePublished\":\"2025-08-26T06:00:00+00:00\",\"dateModified\":\"2026-04-09T21:31:14+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/checkmarx.com\/learn\/container-security\/container-vulnerability-management-cutting-through-the-noise\/\"},\"wordCount\":1021,\"publisher\":{\"@id\":\"https:\/\/checkmarx.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/checkmarx.com\/learn\/container-security\/container-vulnerability-management-cutting-through-the-noise\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/08\/Why-Your-Container-Scans-Could-be-Lying-to-You.webp\",\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/checkmarx.com\/learn\/container-security\/container-vulnerability-management-cutting-through-the-noise\/\",\"url\":\"https:\/\/checkmarx.com\/learn\/container-security\/container-vulnerability-management-cutting-through-the-noise\/\",\"name\":\"Container Vulnerability Management: Cutting Through the Noise\",\"isPartOf\":{\"@id\":\"https:\/\/checkmarx.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/checkmarx.com\/learn\/container-security\/container-vulnerability-management-cutting-through-the-noise\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/checkmarx.com\/learn\/container-security\/container-vulnerability-management-cutting-through-the-noise\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/08\/Why-Your-Container-Scans-Could-be-Lying-to-You.webp\",\"datePublished\":\"2025-08-26T06:00:00+00:00\",\"dateModified\":\"2026-04-09T21:31:14+00:00\",\"description\":\"Learn why conventional approaches to container vulnerability scanning sometimes fall short, and how organizations can do better.\",\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/checkmarx.com\/learn\/container-security\/container-vulnerability-management-cutting-through-the-noise\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/checkmarx.com\/learn\/container-security\/container-vulnerability-management-cutting-through-the-noise\/#primaryimage\",\"url\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/08\/Why-Your-Container-Scans-Could-be-Lying-to-You.webp\",\"contentUrl\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/08\/Why-Your-Container-Scans-Could-be-Lying-to-You.webp\",\"width\":2033,\"height\":1017,\"caption\":\"Visualization of container vulnerability management showing layered server, host OS, and container applications with highlighted security risks and detected vulnerabilities.\"},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/checkmarx.com\/#website\",\"url\":\"https:\/\/checkmarx.com\/\",\"name\":\"Checkmarx\",\"description\":\"The world runs on code. We secure it.\",\"publisher\":{\"@id\":\"https:\/\/checkmarx.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/checkmarx.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/checkmarx.com\/#organization\",\"name\":\"Checkmarx\",\"url\":\"https:\/\/checkmarx.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/checkmarx.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/02\/logo-dark.svg\",\"contentUrl\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/02\/logo-dark.svg\",\"width\":1,\"height\":1,\"caption\":\"Checkmarx\"},\"image\":{\"@id\":\"https:\/\/checkmarx.com\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/Checkmarx.Source.Code.Analysis\",\"https:\/\/x.com\/checkmarx\",\"https:\/\/www.youtube.com\/user\/CheckmarxResearchLab\",\"https:\/\/www.linkedin.com\/company\/checkmarx\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/checkmarx.com\/#\/schema\/person\/f2f13af2bbd7334f86e05c26025b82cc\",\"name\":\"Emma Datny\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/checkmarx.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/05\/Emma-Datny-150x150.jpg\",\"contentUrl\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/05\/Emma-Datny-150x150.jpg\",\"caption\":\"Emma Datny\"},\"sameAs\":[\"https:\/\/checkmarx.com\/\"],\"url\":\"https:\/\/checkmarx.com\/author\/emma_datny\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Container Vulnerability Management: Cutting Through the Noise","description":"Learn why conventional approaches to container vulnerability scanning sometimes fall short, and how organizations can do better.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/checkmarx.com\/learn\/container-security\/container-vulnerability-management-cutting-through-the-noise\/","og_locale":"en_US","og_type":"article","og_title":"Container Vulnerability Management: Cutting Through the Noise","og_description":"Learn why conventional approaches to container vulnerability scanning sometimes fall short, and how organizations can do better.","og_url":"https:\/\/checkmarx.com\/learn\/container-security\/container-vulnerability-management-cutting-through-the-noise\/","og_site_name":"Checkmarx","article_publisher":"https:\/\/www.facebook.com\/Checkmarx.Source.Code.Analysis","article_modified_time":"2026-04-09T21:31:14+00:00","og_image":[{"width":2033,"height":1017,"url":"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/08\/Why-Your-Container-Scans-Could-be-Lying-to-You.webp","type":"image\/webp"}],"twitter_card":"summary_large_image","twitter_site":"@checkmarx","twitter_misc":{"Est. reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/checkmarx.com\/learn\/container-security\/container-vulnerability-management-cutting-through-the-noise\/#article","isPartOf":{"@id":"https:\/\/checkmarx.com\/learn\/container-security\/container-vulnerability-management-cutting-through-the-noise\/"},"author":{"name":"Emma Datny","@id":"https:\/\/checkmarx.com\/#\/schema\/person\/f2f13af2bbd7334f86e05c26025b82cc"},"headline":"Container Vulnerability Management: Cutting Through the Noise","datePublished":"2025-08-26T06:00:00+00:00","dateModified":"2026-04-09T21:31:14+00:00","mainEntityOfPage":{"@id":"https:\/\/checkmarx.com\/learn\/container-security\/container-vulnerability-management-cutting-through-the-noise\/"},"wordCount":1021,"publisher":{"@id":"https:\/\/checkmarx.com\/#organization"},"image":{"@id":"https:\/\/checkmarx.com\/learn\/container-security\/container-vulnerability-management-cutting-through-the-noise\/#primaryimage"},"thumbnailUrl":"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/08\/Why-Your-Container-Scans-Could-be-Lying-to-You.webp","inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/checkmarx.com\/learn\/container-security\/container-vulnerability-management-cutting-through-the-noise\/","url":"https:\/\/checkmarx.com\/learn\/container-security\/container-vulnerability-management-cutting-through-the-noise\/","name":"Container Vulnerability Management: Cutting Through the Noise","isPartOf":{"@id":"https:\/\/checkmarx.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/checkmarx.com\/learn\/container-security\/container-vulnerability-management-cutting-through-the-noise\/#primaryimage"},"image":{"@id":"https:\/\/checkmarx.com\/learn\/container-security\/container-vulnerability-management-cutting-through-the-noise\/#primaryimage"},"thumbnailUrl":"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/08\/Why-Your-Container-Scans-Could-be-Lying-to-You.webp","datePublished":"2025-08-26T06:00:00+00:00","dateModified":"2026-04-09T21:31:14+00:00","description":"Learn why conventional approaches to container vulnerability scanning sometimes fall short, and how organizations can do better.","inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/checkmarx.com\/learn\/container-security\/container-vulnerability-management-cutting-through-the-noise\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/checkmarx.com\/learn\/container-security\/container-vulnerability-management-cutting-through-the-noise\/#primaryimage","url":"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/08\/Why-Your-Container-Scans-Could-be-Lying-to-You.webp","contentUrl":"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/08\/Why-Your-Container-Scans-Could-be-Lying-to-You.webp","width":2033,"height":1017,"caption":"Visualization of container vulnerability management showing layered server, host OS, and container applications with highlighted security risks and detected vulnerabilities."},{"@type":"WebSite","@id":"https:\/\/checkmarx.com\/#website","url":"https:\/\/checkmarx.com\/","name":"Checkmarx","description":"The world runs on code. We secure it.","publisher":{"@id":"https:\/\/checkmarx.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/checkmarx.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/checkmarx.com\/#organization","name":"Checkmarx","url":"https:\/\/checkmarx.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/checkmarx.com\/#\/schema\/logo\/image\/","url":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/02\/logo-dark.svg","contentUrl":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/02\/logo-dark.svg","width":1,"height":1,"caption":"Checkmarx"},"image":{"@id":"https:\/\/checkmarx.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/Checkmarx.Source.Code.Analysis","https:\/\/x.com\/checkmarx","https:\/\/www.youtube.com\/user\/CheckmarxResearchLab","https:\/\/www.linkedin.com\/company\/checkmarx"]},{"@type":"Person","@id":"https:\/\/checkmarx.com\/#\/schema\/person\/f2f13af2bbd7334f86e05c26025b82cc","name":"Emma Datny","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/checkmarx.com\/#\/schema\/person\/image\/","url":"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/05\/Emma-Datny-150x150.jpg","contentUrl":"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/05\/Emma-Datny-150x150.jpg","caption":"Emma Datny"},"sameAs":["https:\/\/checkmarx.com\/"],"url":"https:\/\/checkmarx.com\/author\/emma_datny\/"}]}},"_links":{"self":[{"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/learn\/103162","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/learn"}],"about":[{"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/types\/learn"}],"author":[{"embeddable":true,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/users\/141"}],"version-history":[{"count":0,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/learn\/103162\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/media\/103163"}],"wp:attachment":[{"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/media?parent=103162"}],"wp:term":[{"taxonomy":"learn-cat","embeddable":true,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/learn-cat?post=103162"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}