#NoDocs? Your code is actually useful documentation with Integral
September 8, 2017

Know your dependencies, let’s learn from Equifax

What dependencies are lurking i your apps?

https://blogs.apache.org/foundation/entry/media-alert-the-apache-software

It seems an earlier fixed bug in Struts was not covered at Equifax, allowing hackers to gain entry and the rest is history. While we can imagine scenarios where no one was checking at all, we can also imagine scenarios where precise dependencies and versions were not known. Integral allows notifications of blacklisted dependencies, and you can limit to production branches, so you don’t get overrun with notifications for historical versions in your repository. Drop us a line if you’re interested in learning more.

Comments are closed.