Vulnerability detection

You can instruct PulseUno to regularly identify vulnerabilities in chains and vault packages.

When you run a chain or deliver a package to a vault, PulseUno automatically detects vulnerabilities that the chain or package have.

For enhanced security, you can enable continuous vulnerability detection for chains and packages. This way, PulseUno will identify and report any vulnerabilities that may be discovered in the future. By default, the ongoing vulnerability check is enabled for remote vaults.

To keep up to date with newly found security issues, PulseUno regularly gathers vulnerability information from the following sources:

To run ongoing vulnerability checks:

Chains
  1. Add one or more dependency detection steps to the chain, for example:

    • CycloneDx Dependency Detector

    • Maven Dependency Detection

    • Npm Dependency Detection

      For details about these steps, see Dependency.

      For details about adding plugin steps to a chain, see Create chains.

  2. Set the vulnerability detection option for the chain.

    For details, see Enable ongoing vulnerability detection.

Vault packages

Enable the Vulnerability Check option in vault settings.

For details, see Edit vault settings.

Back to top