Trivy

Netflix deploys over 1,000 container images daily across their microservices architecture serving 260 million subscribers. A critical vulnerability in a base image went undetected for 3 weeks, prompting an urgent initiative to implement automated vulnerability scanning at every stage of their image lifecycle.

Robinhood's infrastructure team manages 2,500+ Terraform resources across 40 AWS accounts handling financial transactions for 23 million users. After a misconfigured S3 bucket policy temporarily exposed internal API documentation, the security team mandated automated IaC scanning before any Terraform plan could be applied.

Datadog runs 50+ Kubernetes clusters across AWS and GCP hosting their observability platform. With over 15,000 running pods and 3,000 unique container images, they needed continuous visibility into vulnerabilities and misconfigurations across their entire fleet without impacting cluster performance or developer velocity.

Siemens Digital Industries delivers industrial IoT software deployed in critical infrastructure across 200+ manufacturing facilities. New EU Cyber Resilience Act (CRA) regulations and US Executive Order 14028 mandate that all software vendors provide Software Bills of Materials (SBOMs) for their products, with non-compliance penalties starting in 2025.

Coinbase operates a large monorepo containing 400+ services with 2,000+ developers contributing daily. After a leaked AWS key in a committed configuration file was exploited within 4 minutes of being pushed to a public fork, the security team needed comprehensive filesystem scanning that could catch secrets, vulnerabilities, and misconfigurations before code left the developer's machine.

Deutsche Bank's trading platform runs in a strictly air-gapped environment processing 2.5 million trades daily. BaFin (German Federal Financial Supervisory Authority) and the ECB require continuous compliance with CIS benchmarks for all container and Kubernetes infrastructure, with quarterly audit evidence submission.