Analyses your Java applications for open-source dependencies with known vulnerabilities, using both static analysis and testing to determine code context and usage for greater accuracy. https://eclipse.github.io/steady/
Apache License 2.0
519
stars
123
forks
source link
Introduced vdb profile in Docker Compose application #507
To further control the footprint of the Docker Compose application, a new profile called VDB was introduced.
By now, the following service profiles exist in
docker/docker-compose-new.yml
:haproxy
,rest-backend
andpostgresql
need to always runfrontend-apps
,frontend-bugs
andcache
deliver OpenUI5 Web applications for scan results (http://localhost:8033/apps) and vulnerabilities (http://localhost:8033/bugs).rest-lib-utils
,kb-importer
andpatch-lib-analyzer
update the vulnerability database and resolve un-assessed findings (by comparing method bodies obtained fromrest-lib-utils
)TODO
s