The Banzai Cloud Pipeline helps you use your infrastructure securely. When you create a cluster with the security functions enabled, pipeline deploys the resources necessary to rejects or allow pod creation depending on your active security policy to your cluster. You can choose a predefined policy or upload your own.

With enabled security feature Banzai Cloud Pipeline provides you detailed view of the vulnerable images used in your cluster.

The following resources are created on your cluster to accomodate the security ecosystem: **

v1beta1/Deployment:
    {release-name}-anchore-policy-validator

v1beta1/ValidatingWebhookConfiguration:
    {release-name}-anchore-policy-validator.admission.anchore.io

v1beta1/CustomResourceDefinition:
    audits.security.banzaicloud.com
    whitelistitems.security.banzaicloud.com

These resources are responsible for validating images, checking whitelists and writing scanlog. You can read more about the implementation of this feature in this blog post Detecting and blocking vulnerable containers in Kubernetes (deployments).