A demonstration of using Maven tools to find and remediate vulnerabilities in Java applications. Uses OWASP Dependency-Check to identify vulnerable components.
OWASP Dependency-Check owasp.org/www-project-depende...
GitHub github.com/jeremylong/Depende...
0:00 Intro
2:04 Listing the dependencies (mvn dependency:tree)
3:27 Find vulnerable components (mvn dependency-check:check)
5:48 Remediating by updating
10:16 Remediating specific components
12:16 Finding the latest versions of components (mvn versions:display-dependency-updates, mvnrepository.com/)
14:40 Using dependencyManagement
18:58 Verifying the fixes
Негізгі бет Ғылым және технология Finding and Remediating Vulnerabilities with Maven Dependency Management
Пікірлер: 13