A new partnership with RapidFort targets the vulnerability problem hiding inside container images.
Running Kubernetes at scale has never been the hard part. Keeping it secure has.
For platform teams managing containerized infrastructure across data centers, edge locations, and public cloud environments, vulnerability management has become a grind of reactive patching — find the CVE, fix it, redeploy, repeat. In practice, security has become the department that slows everything else down.
Nutanix is announcing at KubeCon Amsterdam a partnership with RapidFort that aims to change that dynamic. The integration embeds RapidFort’s automated software supply chain security directly into the Nutanix Kubernetes Platform, giving customers what the company describes as a secure-by-default posture across their entire container ecosystem.
The Problem Isn’t the Cluster. It’s What’s Inside It.
A hardened Kubernetes platform offers meaningful protection — but only up to a point. The more consequential risk increasingly lives in the application images running on top of it.
Most container images ship with far more code than any application actually uses. Those unused packages don’t contribute to functionality. They do, however, expand the attack surface available to anyone looking for a way in. Traditional vulnerability management catches problems after the fact. The RapidFort integration is designed to reduce the surface before code reaches production.
In practice, this works through what RapidFort calls runtime intelligence: the platform observes what a container actually requires to run, strips out everything it doesn’t, and produces a minimalist image built only from what is genuinely needed. The result is a hardened, functional-minimum container with a dramatically smaller vulnerability footprint.
What NKP Customers Get
For organizations running the Nutanix Kubernetes Platform, the integration delivers three concrete capabilities.
First, access to RapidFort’s curated near-zero CVE images — pre-hardened containers with unnecessary packages removed before deployment. Second, automated remediation that replaces weeks of manual patching with systematic identification and removal of vulnerabilities across the software supply chain. Third, cryptographic proof of provenance for every library in the stack, regardless of whether workloads are running in a centralized data center or at a remote edge location.
That last point matters more than it might initially appear. Consistency of security posture across hybrid environments has historically been difficult to enforce. Pairing NKP’s policy-driven cluster management with RapidFort’s runtime intelligence creates a pipeline where only authorized, risk-reduced artifacts are permitted to run — verified at every point in the stack.
Security That Doesn’t Slow Shipping
Nutanixis case is not just technical. It is organizational.
Infrastructure teams and development teams have long operated in tension over security requirements — compliance demands slow things down, and developers under deadline pressure find ways around controls that create friction. The integration is designed to make the secure path the default path, rather than an obstacle to be worked around.
For organizations building generative AI applications or managing legacy workloads in sovereign cloud environments, the promise is the same: compliance objectives met without the security debt that typically accumulates when teams are moving fast.
The integrated capabilities are expected to be available to NKP customers later this year. Nutanix is demonstrating the partnership this week at its KubeCon Amsterdam booth.
