Sonatype Nexus IQ Evaluation
截图:
简介:
Sonatype Nexus IQ 评估 - 扫描开源存储库以查找已知漏洞。
此 Chrome 扩展程序与 Sonatype Nexus Lifecycle 配合使用,可在下载之前检查 OSS 包。该插件需要有效的 Sonatype Nexus Lifecycle 实例。在设置过程中,系统将提示您连接到 Sonatype Nexus IQ 服务器。注意:由 Sonatype 支持。
该扩展适用于以下包管理器及其网站。
1..Net – NuGet – https://www.nuget.org/
2. Alpine – Linux – https://pkgs.alpinelinux.org/
3. Chocolatey – Windows – https://community.chocolatey.org/
4. Clojars – Clojure – https://clojars.org/
5.CocoaPods – iOS – https://cocoapods.org/
6.柯南 – C/C++ – https://conan.io/center/
7.Conda – Python – https://anaconda.org/anaconda/
8.Debian – Linux – https://packages.debian.org/
9. Debian – Linux – https://tracker.debian.org/pkg/
10. GitHub – 发布 – https://github.com/*/releases/tag/*
11.Golang – Go – https://pkg.go.dev/
12. Java – Maven – https://mvnrepository.com/
13. Java – Maven – https://repo.maven.apache.org/
14. Java – Maven – https://repo.spring.io/list/
15. Java – Maven – https://repo1.maven.org/
16. Java – Maven – https://search.maven.org/
17. JavaScript/Node – npm – https://www.npmjs.com/
18. PHP – Packagist/composer – https://packagist.org/
19.Python – PyPI – https://pypi.org/
20. R – CRAN – https://cran.r–project.org/
21. Ruby – RubyGems – https://rubygems.org/
22. Rust – 板条箱 – https://crates.io/
23. Nexus Proxy Repos – 支持的存储库格式为 maven2、npm、rubygems 和 nuget,例如 http://nexus:8081/#browse/browse:maven–central:commons–collections%2Fcommons–collections%2F3.2.1
24. Artifactory Proxy Repos – 支持的存储库格式为 maven2 和 npm,例如 https://artifactory-server/webapp/#/artifacts/browse/tree/General/npmjs–cache/parseurl/–/parseurl–1.0.1.tgz
25. Artifactory Repo 列表 – 例如 https://repo.spring.io/list/jcenter–cache/org/cloudfoundry/cf–maven–plugin/1.1.3/