dejacode
dejacode copied to clipboard
aboutcode-org
Automate open source license compliance and ensure software supply chain integrity
We expect to request help for a UI usability review for accessibility and inclusiveness. We will apply the adjustments resulting from this review feedback here.
Create and publish step-by-step tutorials documentation
Create and publish usage and reference documentation
Create a system to provide a alert/notification when new, not-yet-processed vulnerabilities are uncovered
Propagate/mass update vulnerability exploitability determination across the portfolio to facilitate reusing triaged items
Query for the affected vulnerable package version presence across multiple products, create UI and API accordingly.
Rank exploitability based on collected KEV (known exploited vulns) served by VulnerableCode: - CVSS https://github.com/nexB/vulnerablecode/issues/1473 - EPSS https://github.com/nexB/vulnerablecode/issues/1474
Create UI and DB models to create and store effective exploitability both org-wide and app- or product-specific. We should also include tracing data to document the disposition of a vulnerability....
Create UI and DB models to create and store vulnerability policy: org-wide, and product-specific policy based on purpose, destination, type of usage and other factors.
Extend the web UI to work on the packages of a product, reusing extra product-level package flags (such as purpose and modification), global- and product policy.
Metadata
Owner
Metadata
Automate open source license compliance and ensure software supply chain integrity