Skip to content
/ soot-wrapper Public

Analyses how you use your dependencies to figure out if you use the vulnerable parts of a vulnerable dependency

License

MIT license
4 stars 5 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

debricked/soot-wrapper

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

155 Commits

.github/workflows

.github/workflows

 
 

java

java

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

Repository files navigation

⚠️ BETA QUALITY SOFTWARE! ⚠️

Vulnerable Functionality

This repo analyses your code to determine what parts of your dependencies you use, and stores this in a file which can be picked up debricked.

This, combined with our information about what parts of dependencies are affected by CVEs, allows us to determine whether you use the parts of a dependency affected by a vulnerability, or if its safe to continue using the dependency in spite of the vulnerability.

Setup

Go to common java directory: cd java/common/

Build SootWrapper: mvn clean package -X -DskipTests

You will now have jar-file in the target directory: java/common/target.

About

Analyses how you use your dependencies to figure out if you use the vulnerable parts of a vulnerable dependency

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

4 stars

Watchers

3 watching

Forks

5 forks
Report repository

Releases

8 tags

Packages 3

 
 
 

Contributors 5

Languages