---
title: "Continuous Security: Proactive Vulnerability Detection "
description: "Automatically detect new vulnerabilities in existing artifacts with Cloudsmith's Continuous Security. Get hourly checks, EPSS exploit scoring, and automated governance to secure your software supply chain without manual re-scans."
canonical_url: "https://cloudsmith.com/changelog/detect-and-prioritize-new-vulnerabilities-faster-with-continuous-security"
last_updated: "2025-08-14T18:24:52.869Z"
---
# Continuous Security: Proactive Vulnerability Detection 

Identify and prioritize new vulnerabilities in your existing artifacts with Cloudsmith’s Continuous Security. Continuous Security runs hourly checks against trusted vulnerability data sources,** **enabling faster detection and response to newly disclosed threats without the need for manual re-scans. Each finding includes an Exploit Prediction Scoring System ([EPSS](https://www.first.org/epss/)) score so you can quickly gauge real-world exploit likelihood and respond accordingly.

```json
{
  "_key": "08da02b27f15",
  "_type": "image",
  "alt": "EPM Policies are continuously evaluated",
  "asset": {
    "_createdAt": "2025-08-14T18:26:50Z",
    "_id": "image-7fa8655fae597017a5ae7b653561ee96f952ad9b-2372x1246-png",
    "_rev": "u4NPjRFcGI8449Zy0FoH5T",
    "_type": "sanity.imageAsset",
    "_updatedAt": "2025-08-14T18:26:50Z",
    "assetId": "7fa8655fae597017a5ae7b653561ee96f952ad9b",
    "extension": "png",
    "metadata": {
      "_type": "sanity.imageMetadata",
      "blurHash": "MiLN=E00?b%MD%~q%MM|WAt7?c-pM{ayof",
      "dimensions": {
        "_type": "sanity.imageDimensions",
        "aspectRatio": 1.9036918138041734,
        "height": 1246,
        "width": 2372
      },
      "hasAlpha": true,
      "isOpaque": true,
      "lqip": "data:image/png;base64,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",
      "palette": {
        "_type": "sanity.imagePalette",
        "darkMuted": {
          "_type": "sanity.imagePaletteSwatch",
          "background": "#2a3a43",
          "foreground": "#fff",
          "population": 2.1,
          "title": "#fff"
        },
        "darkVibrant": {
          "_type": "sanity.imagePaletteSwatch",
          "background": "#08243c",
          "foreground": "#fff",
          "population": 0.02,
          "title": "#fff"
        },
        "dominant": {
          "_type": "sanity.imagePaletteSwatch",
          "background": "#2a3a43",
          "foreground": "#fff",
          "population": 2.1,
          "title": "#fff"
        },
        "lightMuted": {
          "_type": "sanity.imagePaletteSwatch",
          "background": "#b4d4cc",
          "foreground": "#000",
          "population": 0,
          "title": "#000"
        },
        "lightVibrant": {
          "_type": "sanity.imagePaletteSwatch",
          "background": "#f1fcc9",
          "foreground": "#000",
          "population": 0.01,
          "title": "#000"
        },
        "muted": {
          "_type": "sanity.imagePaletteSwatch",
          "background": "#7ca094",
          "foreground": "#fff",
          "population": 0.01,
          "title": "#fff"
        },
        "vibrant": {
          "_type": "sanity.imagePaletteSwatch",
          "background": "#316ddd",
          "foreground": "#fff",
          "population": 0.25,
          "title": "#fff"
        }
      }
    },
    "mimeType": "image/png",
    "originalFilename": "image.png",
    "path": "images/rafvlnhi/production/7fa8655fae597017a5ae7b653561ee96f952ad9b-2372x1246.png",
    "sha1hash": "7fa8655fae597017a5ae7b653561ee96f952ad9b",
    "size": 663323,
    "uploadId": "9Tnl7kXJACH4EYBKVP9YtPHs1E4e5iXU",
    "url": "https://cdn.sanity.io/images/rafvlnhi/production/7fa8655fae597017a5ae7b653561ee96f952ad9b-2372x1246.png"
  },
  "caption": "EPM Policies are continuously evaluated",
  "link": {
    "_type": "link",
    "href": null,
    "openInNewTab": false
  },
  "markDefs": null
}
```

## What’s new

- **Proactive threat detection**: Hourly updates flag** **new threats affecting artifacts already in your repositories, reducing the time between disclosure and detection.
- **Automated governance with Enterprise Policy Management**: Vulnerabilities identified by Continuous Security can be managed and actioned using EPM and policies-as-code ([Rego-based syntax](https://docs.cloudsmith.com/supply-chain-security/epm/rego)), preventing downloads or tagging risky artifacts.
- **No change to existing scanning**: The [standard vulnerability](https://docs.cloudsmith.com/supply-chain-security/vulnerability-scanning) scanning functionality remains unchanged. Continuous Security acts as an additional, proactive layer of security and does not replace or alter the behavior of the existing on-demand and on-upload scanning processes.
- **Broad format support**: This new capability is available for all [package formats supported](https://docs.cloudsmith.com/supply-chain-security/vulnerability-scanning) by standard vulnerability scanning.
- **Trusted data sources**: Continuous Security aggregates data from trusted and reputable sources:
   - Aqua Trivy DB (refreshed every 6 hours)
   - Exploit Prediction Scoring System (EPSS) (refreshed every 24 hours)

Continuous Security is a fundamental component of our **Enterprise Policy Management (EPM)** suite. It is available in Early Access for all workspaces where EPM has been enabled.

Learn more about [**Continuous Security**](https://docs.cloudsmith.com/supply-chain-security/continuous-security) in [**Enterprise Policy Management**](https://docs.cloudsmith.com/supply-chain-security/epm/getting-started) in our documentation. Interested in Early Access for Enterprise Policy Management? [Contact us](/company/contact-us).
