Announcing Kubescape 4.0 Enterprise Stability Meets the AI Era

Runtime Threat Detection Reaches General Availability (GA) Kubescape Storage Reaches General Availability (GA) The Enhanced Node-Agent and Host-Sensor Deprecation Kubescape Enters the AI Era Compliance Posted on March 26, 2026 by Ben Hirschberg, Kubescape Core Maintainer, ARMO CTO CNCF projects highlighted in this post We are happy to announce the release of Kubescape 4.0, a milestone bringing enterprise-grade stability and advanced threat detection to open source Kubernetes security. This version focuses on making security more proactive and scalable. It also introduces capabilities that allow AI agents to utilize Kubescape to scan clusters as well as enable security posture scanning for the AI agents themselves. The highlight of this release is the GA of our Runtime Threat Detection. After rigorous testing, we’ve achieved proven stability at scale. The engine is powered by CEL-based detection rules. These Common Expression Language rules are highly efficient and have direct access to Kubescape Application Profiles, which act as security baselines for your workloads. Source: Kubescpe. io Kubescape 4.0 monitors a comprehensive suite of events including: System Interactions: Processes, Linux capabilities, and System calls Connectivity: Network and HTTP events Storage: File system activities For seamless operations, Rules and RuleBindings are now managed as Kubernetes CRDs. You can export alerts to your existing stack, including AlertManager, SIEM, Syslog, Stdout, and HTTP webhooks. Check out the Kubescape documentation for more information. Kubescape Storage has officially reached GA.