LFX Security detects vulnerabilities in LFX projects. Projects that are part of the LFX receive free daily scans via the LFX Security service in order to detect vulnerabilities in code repositories as well as library dependencies. LFX projects include a Vulnerability Report, which gives an overview of vulnerability severities.
As a project maintainer, you can access vulnerability scan details for projects based on the LFX service you opted while enrolling your project:
Note: If you are not a project maintainer and/or not authorized to see vulnerability report for a project, you can request access to see vulnerability scan details.
To see vulnerability scan details for projects from LFX Funding:
2.From dashboard, click a project of interest or click My Projects to see your projects.
3.A dashboard shows various aspects of the project including a Vulnerability Report.
4.Navigate to the Vulnerability Report card, and click a severity level. Note: Log in if a Login Now prompt appears. LFX Security appears and shows the Overview dashboard.
5.Access other dashboards by selecting a menu name to investigate vulnerabilities by using the data in the dashboards
To see vulnerability scan details for projects applied to LFX Security:
2.Click My Projects to see your projects.
3.On a project card of interest, click View Issues.
4.The Overview page appears with the details for the selected project.
If you are not authorized to see vulnerability report for a project, Not Authorized pane appears when you click Contributor Login on a project of interest. To request access:
1.Click Request Access.
2.The Not Authorized dialog box appears. Click Request Access.
3.The LFX Security help center request form opens. Enter the details and click Create.