...
This section will guide you through the functions of the Kiuwan Insights module.
Contents:
Table of Contents |
---|
Kiuwan Insights Dashboard:
Related pages:
Children Display |
---|
Introduction to Kiuwan Insights
Introduction
Today’s time-to-market imposes high pressure on releasing new versions of your application. Productivity becomes essential. And most of the timestime, you will incorporate external open source components that let you build new functionality very fast and with the minimum effort.
Open Source repositories provides provide huge amounts of software that lets you build new applications very fast and robustly.
But not all are benefits; there might be also some drawbacks when using open source components.
First obvious question has to do with how much open source software is your application using.
Info | ||
---|---|---|
| ||
|
...
|
...
|
...
|
...
|
...
|
...
|
Warning |
---|
Are those components obsolete? You
|
...
|
...
|
...
|
...
|
...
|
Warning |
---|
|
...
|
...
|
...
|
...
|
...
|
...
|
...
|
These, and probably others, are common questions when using 3rd party components.
Tip |
---|
Kiuwan Insights comes to answer all these questions by providing:
|
Components Inventory
If you are a developer, you most probably will access to build systems where external components are “identified”.
But, are those 3rd party components part of a “controlled” inventory? Most probably, don’t.
...
Kiuwan Insight analyzes your application software, discovering all external dependencies, and builds
...
a components inventory that lets you track
...
any external piece of code that could be part of your application.
Go to Insights > Components to access the components inventory.
Supported languages and resources
Kiuwan Insights uses the following resources to extract information on 3rd party dependencies.
Supported languages | Supported repositories | Supported build systems | Repositories Used | Database Vulnerabilities Used | Licenses extract from |
---|---|---|---|---|---|
Java |
|
| Maven (central or others configured in settings.xml or pom.xml files): |
| |
Javascript |
|
| Npm: https://www.npmjs.com/ |
| |
.Net |
|
| Nuget: https://www.nuget.org/ |
| |
Python |
|
| PyPI: https://pypi.org/ |
| |
Scala |
|
| Maven (central or others configured in settings.xml or pom.xml files): |
| |
Swift |
|
| Repository Podspec in Github: |
| |
Php |
|
| Packagist: https://packagist.org/ |
| |
Ruby |
|
| RubyGems: https://rubygems.org/ |
|
|
Kotlin |
|
| Maven (central or others configured in settings.xml or pom.xml files): |
|
...
From these sources, Kiuwan Insight builds the Components Inventory of your application.
You can add your specific private (local or remote) and/or public repos repositories by properly configuring Kiuwan Local Analyzer.
Please visit Insights - Additional Maven repositories for further info)
Info |
---|
Components Inventory is available at Insights >> Components tab. |
information.
Security, Obsolescence, and Licensing
At a glance, Kiuwan Insights provides detailed information and visual indicators that quickly let you to know the different levels of risk associated to with every external component.
Every component is assigned a level (High, Medium, Low or None) on three different risk metrics:
- Security Risk (due to vulnerabilities introduced by components)
- Obsolescence Risk (due to using obsolete components)
- License Risk (due to legal implications of used components’ licenses)
Info |
---|
Security information is available at Insights >> > Security tab.
Obsolescence information is available at Insights >> > Obsolescence tab.
|