Versions Compared

Old Version 26

changes.mady.by.user Unknown User (m.van.kessel)

Saved on

compared with

New Version 27

changes.mady.by.user Unknown User (m.van.kessel)

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Keep in mind that it's advisable that a penetration test should will always be executed before going live on an environment.

...

advised on a production enviroment, before your Blueriq application goes live

OWASP Dependency Checker

Dependency-Check is a utility that identifies project dependencies and checks if there are any known, publicly disclosed, vulnerabilities in 3rd party components. This dependency checker is integrated in our Jenkins CI server. Currently Java and .NET are supported. The OWASP Dependency-check is used to scan our dependent libraries to identify any known vulnerable components. The core engine contains a series of analysers that inspect the dependencies, collect pieces of information about the dependencies (referred to as evidence within the tool). The evidence is then used to identify the Common Platform Enumeration (CPE) for the given dependency. If a CPE is identified, a listing of associated Common Vulnerability and Exposure (CVE) entries are listed in a report.

...