Functions
This section describes CodeArts Governance's functions. You can query the regions supported by each function on the console.
Binary Software Composition Analysis (SCA)
CodeArts Governance comprehensively analyzes the software packages/firmware. It scans the security configurations and security compiler options to detect information leaks and other potential risks in the open-source software.
- Comprehensive scan
CodeArts Governance analyzes software and firmware packages to identify software vulnerabilities against security rules. It also evaluates license compliance, password strength (including weak or hard-coded passwords), security configurations, and secure complier options.
- Wide applicability
CodeArts Governance can scan desktop applications that run on Windows and Linux, mobile applications that run on Android Application Package (APK), iOS App Store Package (IPA), and HarmonyOS Ability Package (HAP), as well as embedded system firmware.
- Professional analysis and guide
Risk information is presented based on thorough analysis from different perspectives, along with relevant troubleshooting suggestions.
Open-Source Licenses
You can set the risk level of open-source licenses in different scenarios.
Knowledge Library
- Vulnerability source: National Vulnerability Database (NVD)
- Open-source licenses: 37 types of mainstream licenses
- Open-source software versions: Binary SCA can detect feature code for 40,000+ open-source software versions. The package management detection can detect 40+ million open-source software versions in Maven, PyPI, npm, and NuGet repositories.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot
