Merge branch 'master' of github.com:kubescape/sneeffer

rcohencyberarmor · Nov 24, 2022 · 6658a57 · 6658a57
2 parents eeda92b + 243730c
commit 6658a57
Showing 1 changed file with 14 additions and 0 deletions.
diff --git a/README.md b/README.md
@@ -159,3 +159,17 @@ crdVulnSummaryPath=./resources/k8s/crd-vuln-summary.yaml
 myNode=minikube
 ```
 
+# FAQs
+
+## What about dynamic loading of software packages?
+
+There are software packages which are not loaded by default inside the container when it is ran. Their load can be depending of software configuration, API call, time from start and etc. Sneeffer can only detect behavior which it saw happening thus will only mark vulnerabilities as "relevant" if it saw happening. In case a dynamic load happened during the observation period, it will detected and its vulnerablities marked as relevant. 
+
+To optimize results, we suggest running tests on the workload during to observation period. The bigger the test coverage the more precise the results will be.
+
+## Interpreted languages 
+
+Interpreted languages are in general supported as well. Their packages are covered as far as the SBOM generated by Syft is complete and contains the packages and their files.
+
+
+