Analyses your Java applications for open-source dependencies with known vulnerabilities, using both static analysis and testing to determine code context and usage for greater accuracy. https://eclipse.github.io/steady/
Added new IconTab to frontend-apps to be used for debloating the application (i.e., identify dependencies which are not "needed", aka which are bloated, and can thus be removed to reduce the attack surface).
In particular :
it contains the information about libraries usages (which was previously in the "dependencies" tab")
it shows candidate debloatable libraries, i.e., libraries with executable constructs where none was found potentially or actually reachable.
Added new IconTab to frontend-apps to be used for debloating the application (i.e., identify dependencies which are not "needed", aka which are bloated, and can thus be removed to reduce the attack surface). In particular :
TODOs