Release Date: 28/March/2022
LFX Security provides a strong security for you open source code. LFX provides a clear view into the security of a given project and enables developers to identify and resolve vulnerabilities quickly and easily.
Some of the prominent features for LFX Security are:
Automated vulnerability scanning
License compliance management
Centralized project security dashboard
Fix Recommendations
Contextual vulnerability reporting
Detailed Dependency Tree
Neutral to Source Control Systems
Release Version Contextualization
Code secrets detection
Identification of Non Inclusive language in the code
This sections provides you with list of new features and bug fixes for this release.
The following list provides you an overview of new features implemented in this release:
Added Initial Redis Cache Support
Added Redis configuration
Added Redis Caching for BluBracket Code Secrets, BluBracket Non Inclusive Language, and Vulnerabilities queries
Added Applicable flag for Datalake Repository Vulnerability API
The following list provides you the bug fixes that are applied in this release:
Fixed CVE/CWE datalake query
Fixed Issue LFXSEC-2060: Repository - Manifest file display does not display for Licenses Tab of EasyCLA
Resolved Issue for Datalake Licenses for the project which has more than 1 Snyk org
Resolved Project Search Filter
Updated to Serverless 3.10.0
Updated Minimist Library
Resolves CWE-1321, CVE-2021-44906, GHSA-xvch-5gv4-984h issue with the minimist library - updated to version ^1.2.6
NA
You can visit the following links for more information on LFX Security:
\
\