Versions Compared

Old Version 40

changes.mady.by.user Michelle Friedman

Saved on

compared with

New Version 41

changes.mady.by.user Michelle Friedman

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Table of Contents

...

The WhiteSource Home page features a variety of dashboard options, providing users with a rich and varied view of the organization's open-source status.provides immediate visibility of your organization’s open source inventory (open source files), together with potential security vulnerabilities, license compliance, and easy to understand dashboards.  

The following type of information is displayed on the WhiteSource Home page:

  • A dedicated summary count of system category alerts reported for a given Organization, Product or Project, including the total count of policy violations, versions, licenses, quality and security alerts.

  • A Vulnerability Analysis section that displays an inside ranking of An up-to-date overview of security risks and their severity for your components across all products (applications).

  • A list of the products and the number of projects and libraries per product. By default, the top 10 products with the most projects are displayed. 

  • Detailed information about the product libraries (components).

  • License distribution data in which you can see the licenses resolution in your organization and check for licenses that might not comply with your company’s policy.

  • A list of unanswered update requests sent from the plugins regarding new libraries.

  • A list of update requests sent by the user from the plugins regarding new libraries.

...

Alert Type

Category

Description

Policy 

Violations

An alert is triggered upon meeting a condition inconsistent with defined policy.

Libraries

New Versions

An alert is triggered for any scanned library found to be out-of-date (i.e., not having the latest version).

Multiple Versions

An alert is triggered for any library that appears twice or more in different versions within a certain product.

Multiple Licenses

An alert is triggered for any library that has more than one license.

Rejected in Use

An alert is triggered for any library that created a request which was later rejected.

Security

Per-Library Alerts

The total number of libraries with alerts (regardless of project occurrences).

For example, the alert count for a Product with two Projects where each features an alert for the same library will be "one" and will be displayed in one row noting two project occurrences.

The color scheme is as follows:

Red: The number of libraries with High maximum alert severity

Orange: The number of libraries with Medium maximum alert severity

Yellow: The number of libraries with Low maximum alert severity

Per-Vulnerability Alerts

The total number of vulnerability alerts (e.g., a CVE alert).

For example, the alert count for the same CVE recorded in three separate occurrences will be "one", and will be displayed in one row noting three occurrences.

The color scheme is as follows:

  • Red: The number of vulnerability alerts with High severity

  • Orange: The number of vulnerability alerts with Medium severity

  • Yellow: The number of vulnerability alerts with Low severity

...

Clicking More.. directs you to the Organizational Pending Tasks page, where you can select one or multiple pending tasks, and then click More Information (relevant only in Vulnerability-based Alerts organizations). The Library Vulnerabilities and Licenses pop-up screen is displayed, enabling you to view the number of vulnerable libraries plus license information for the selected components.

...

User Requests (Requested by Me)

The Requested By Me table displays the update requests sent by the user from the plugins regarding new libraries.

...