ShiftLeft’s Intelligent SCA uses the full power of Code Property Graph to analyze both custom and open-source vulnerabilities and introduces the concept of “Attacker Reachability” to prioritize only a subset of vulnerabilities for mitigation.
ShiftLeft Intelligent SCA uses the concept of “Attacker Reachability” to prioritize only a subset of OSS vulnerabilities for mitigation. It can trace code paths that can potentially lead attackers from insecure inputs directly to open source vulnerabilities, using the power of the Code Property Graph.
Based on testing conducted against a commercial SCA solution, ShiftLeft’s Intelligent SCA reduced open source vulnerability tickets by 93%.
Sometimes, it’s not possible to upgrade a dependency: a patched version may not be available or it requires significant re-coding to work with the new APIs.
ShiftLeft Intelligent SCA introduces a new option for mitigating OSS vulnerabilities. For OSS vulnerabilities that are “attacker reachable”, a developer can simply mute the impact of this vulnerability by eliminating reachable paths.
ShiftLeft Intelligent SCA currently supports applications written in Java, Scala, and C#. Support for additional languages coming soon.