Release Date: 28/March/2022
LFX Security provides a strong security for you open source code. LFX provides a clear view into the security of a given project and enables developers to identify and resolve vulnerabilities quickly and easily.
Some of the prominent features for LFX Security are:
- Automated vulnerability scanning
- License compliance management
- Centralized project security dashboard
- Fix Recommendations
- Contextual vulnerability reporting
- Detailed Dependency Tree
- Neutral to Source Control Systems
- Release Version Contextualization
- Code secrets detection
- Identification of Non Inclusive language in the code
This sections provides you with list of new features and bug fixes for this release.
The following list provides you an overview of new features implemented in this release:
- Added Initial Redis Cache Support
- Added Redis configuration
- Added Redis Caching for BluBracket Code Secrets, BluBracket Non Inclusive Language, and Vulnerabilities queries
- Added Applicable flag for Datalake Repository Vulnerability API
The following list provides you the bug fixes that are applied in this release:
- Fixed CVE/CWE datalake query
- Fixed Issue LFXSEC-2060: Repository - Manifest file display does not display for Licenses Tab of EasyCLA
- Resolved Issue for Datalake Licenses for the project which has more than 1 Snyk org
- Resolved Project Search Filter
- Updated to Serverless 3.10.0
- Updated Minimist Library
- Resolves CWE-1321, CVE-2021-44906, GHSA-xvch-5gv4-984h issue with the minimist library - updated to version ^1.2.6
NA
You can visit the following links for more information on LFX Security:
- LFX Security Website
- LFX Security Documentation
- Support Forum
- General Discussions
- LFX Tool Help
- Content & Articles
- Suggestions & Requests
\
\