What is Root?

Root is a container security platform designed for security teams, DevOps engineers, platform teams, and vulnerability management professionals. The platform combines agentic AI with human security expertise to automatically fix vulnerabilities in container images, eliminating the operational overhead of manual vulnerability tracking and traditional patch management cycles.

Key Strengths

In-place patching: Fixes vulnerabilities directly in existing images without base image rebuilds or rebases
Selective upgrades: Applies version-safe security patches and proprietary Root fix patches (backported patches)
Seconds, not weeks: Delivers vulnerability resolution in seconds rather than traditional weeks-long cycles
Expert validation: AI-driven analysis verified by security professionals
Complete deliverables: Receive patched images, updated SBOM, and VEX files

How Root Works

Root addresses the core challenge that security and development teams face: the constant cycle of vulnerability discovery, assessment, and remediation that slows delivery and creates customer confidence issues. Rather than simply identifying vulnerabilities or requiring time-consuming base image updates, Root applies targeted security fixes directly to your container images in seconds. The platform integrates seamlessly with your existing container registries and CI/CD pipelines, scaling from single applications to enterprise-wide container environments. Root's hybrid approach of intelligent automation and expert oversight ensures patches are effective and production-safe while maintaining full alignment with the open-source ecosystem.

What You Receive

After Root processes your container images, you receive:

Patched container image in your registry with vulnerabilities resolved
Updated Software Bill of Materials (SBOM) reflecting security changes
Vulnerability Exploitability eXchange (VEX) statement documenting remediation

This Documentation

This documentation will guide you through everything you need to know to get started with Root, from initial setup and registry integration to advanced configuration options and best practices.

Here are some pages to help you get going with Root: