| CPC G06F 11/366 (2013.01) [G06F 8/60 (2013.01); G06F 16/2379 (2019.01); G06F 16/245 (2019.01)] | 20 Claims |
|
1. A method performed by a processing apparatus external to a deployment platform, wherein said method comprising:
obtaining a list of dependencies used by a deployed application that is deployed on the deployment platform, wherein said obtaining is based on a time of deployment of the deployed application, the time of deployment comprising an initial time during which the deployed application was deployed on the deployment platform, wherein before the initial time the deployed application was not deployed on the deployment platform, wherein the list of dependencies comprises a first version of a dependency, wherein said obtaining is performed at a later time than the time of deployment, the first version of the dependency was available during the time of deployment, wherein a second version of the dependency is available at the later time, the second version of the dependency being a newer version of the dependency than the first version of the dependency, the newer version of the dependency was not available during the time of deployment, wherein the second version is different than the first version, wherein the list of dependencies excludes the second version of the dependency;
mapping each dependency of the list of dependencies with a flaws database, the flaws database comprising an indication of known flaws for different dependencies and different versions thereof;
based on said mapping, determining one or more flaws in the deployed application, wherein said determining the one or more flaws is performed externally to the deployment platform and without executing a monitoring process thereon;
filtering the one or more flaws using at least one criterion, whereby obtaining one or more reportable flaws; and
reporting the one or more reportable flaws to a developer of the deployed application.
|