Category

Security

Category

Each year, several thousand new vulnerabilities are disclosed. The CVE database alone enumerated more than 17000 new vulnerabilities during 2019. If you use third-party dependencies, you need to keep track of which dependencies you are using, and the vulnerabilities affecting them. Debricked provides a SaaS tool that can integrate with your development and build pipeline, allowing you to identify all vulnerabilities that you might be affected by. This post will discuss what to do when you have identified new vulnerabilities. First things first With so many new vulnerabilities, you will probably get a long list of potential problems that you need to respond to. At least if it is the first time you scan your project or repository. This list needs to be prioritized and you need to decide which fires to extinguish first. Working efficiently with this prioritization is essential since it will allow you to both prioritize correctly…