Skip to content

2.0.1
Compare
Choose a tag to compare
@tamasmak tamasmak released this 19 Jun 14:18
2.0.1
643d627
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.

With AppSec Kit, developers can now easily identify and manage vulnerabilities within their open-source dependencies directly from Vaadin Development Tools. Because AppSec Kit identifies vulnerabilities in the local development environment, even before code is checked in, developers can resolve issues more quickly and with less friction, resulting in saved time and money.

By facilitating early issue detection and reducing false positives, AppSec Kit enables developers to fix issues more quickly and avoid alert fatigue, strengthening application security and maximizing efficiency.

AppSec Kit 2.0 has support for Vaadin 14 and 23; support for Vaadin 7 and 8 is still available in AppSec Kit 1.0.

Documentation and how to get started:
https://vaadin.com/docs/v14/tools/appsec
https://vaadin.com/docs/v23/tools/appsec

What's Changed

  • Update release and analysis caches during automatic scan too (#154) (CP: 2.0) by @vaadin-bot in #156
  • Add option to provide a custom analysis.json file by system property by @tamasmak in #163
  • Filter out affected elements with unsupported ecosystem [2.0] by @tamasmak in #176

Full Changelog: 2.0.0...2.0.1

Contributors

tamasmak and vaadin-bot
Assets 2
Loading