You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
@@ -87,9 +87,6 @@ NOTE: You have to upgrade any version of `v31.00` to `v32.00` before upgrading t
|Enhancements to Vulnerability Reporting for Red Hat Enterprise Linux (RHEL) Versions 8 and 9
//CWP-30827
tt:[Secure the Runtime]
tt:[33.03.138]
|To ensure accurate vulnerability reporting, Intelligence Stream will include RPM module and stream information for RHEL in the reports. This approach improves detection of vulnerabilities and ensures that all associated RPM packages installed by a module are examined during the scan.
*What are RPM Modules and Streams?*
Expand DownExpand Up
@@ -126,9 +123,6 @@ For example, the notation `python39:3.9/python39` indicates the module `python39
|Enhanced Vulnerability Reporting for NuGet Packages
//CWP-49786
tt:[Secure the Runtime]
tt:[33.03.138]
|Previously, the scanning process included NuGet packages listed in the `.deps.json` files, which were essential for the runtime environment but not related to the application itself. These unrelated packages result in false positives in vulnerability reporting.
With this enhancement, the scanning process excludes runtime-specific dependencies that are not directly related to the application. This provides a more accurate view of vulnerabilities directly associated with the application, and reduces false positive alerts.
