CRX id
kahnhlonadjlllgnilndafpajaiepdag
kahnhlonadjlllgnilndafpajaiepdag
Description from extension meta
소나타입 플랫폼 브라우저 확장 프로그램을 통한 시프트 레프트 – 오픈소스 리포지토리에 대한 취약점 점검
Image from store
Description from store
본 크롬브라우저 확장프로그램은 소나타입 플랫폼과 연동하여 개발자가 소프트웨어 개발 생명주기 초기에 보다 나은 선택을 할 수 있도록 지원합니다.
확장프로그램을 소나타입 라이프사이클 서버와 연동하여, Maven (Java), NPM (Javascript), PyPi (Python)을 비롯한 다양한 퍼블릭 오픈소스 레지스트리를 탐색하는 동안 위협요소와 관련한 정보를 즉시 얻을 수 있습니다.
본 확장프로그램은 2023년말에 종료되는 기존 확장프로그램 (Nexus IQ Chrome Extension)을 대체합니다.
Latest reviews
- (2024-05-09) Chris Wolters: I use this all the time. As developers are initially considering which component to use in their application, they get information while looking at the component in the OSS repository without doing anything. Awesome for shifting left selecting the best component rather than remediating downstream!
- (2023-08-16) Neil Schloth: A great tool for analyzing OSS components on the web for high-risk security vulnerabilities prior to downloading for use. Prevent mistakes early on in the SDLC by alerting on insecure packages before they are built in to application code.
- (2023-08-16) Neil Schloth: A great tool for analyzing OSS components on the web for high-risk security vulnerabilities prior to downloading for use. Prevent mistakes early on in the SDLC by alerting on insecure packages before they are built in to application code.
- (2023-08-10) Roy Decker: An awesome solution for researching open source components that are being considered for an application.
- (2023-07-14) Ben Hartley: The ultimate in shifting left!
- (2023-07-14) Ben Hartley: The ultimate in shifting left!
- (2023-07-14) Patrick Kiessling: Nice!
- (2023-07-14) Patrick Kiessling: Nice!
- (2023-07-14) Paul Meharg: I find this very useful to get a preview of the security and legal implications of acomponent before I start to write code! Keeps me from creating technical debt from the git-go.
- (2023-07-14) Paul Meharg: I find this very useful to get a preview of the security and legal implications of acomponent before I start to write code! Keeps me from creating technical debt from the git-go.
- (2023-07-14) Adam Such: Very useful plugin!
- (2023-07-14) Adam Such: Very useful plugin!
- (2023-07-14) Alexander Plattel: Excellent tool for looking at Open Source packages before you download them.
- (2023-07-14) Alexander Plattel: Excellent tool for looking at Open Source packages before you download them.
- (2023-07-11) Joseph Bernie: An extremely useful plugin for Sonatype customers!!