Auto IDS/IPS to protect deployments (Vision)

Problem to solve

When we deploy an app, it is exposed to any kind of possible remote attacks. We should help to protect the deployed application. This could be done by making automated (or very easy) provisioning of IDS/IPS tools that will run along with the application and protect it.

Proposal

Use existing tools to provide IDS/IPS functionalities to applications deployed to Kubernetes. This is related to WAF (https://gitlab.com/gitlab-org/gitlab-ee/issues/4771) but with a broader scope.

What does success look like, and how can we measure that?

Projects are enabling IDS/IPS features for their deployments.