Ability to detect and prevent security flaws and injections Ability to perform fuzzing and static/dynamic source code analysis Ability to monitor container security including container base images and libraries