Use Cases
π§ Automatic Remediation Planning
Overview
Myrrorβs Remediation Plan Generator optimizes the patching process by evaluating vulnerabilities in both direct and transitive dependencies, thereby minimizing the introduction of new vulnerabilities during patching.
Key Features
Patching and Regression Analysis
Patching can introduce regressions into your system due to changes in transitive dependencies. Myrror addresses these challenges by:
- Identifying new vulnerabilities that may be introduced when patching existing ones.
- Evaluating the risks associated with patching versus not patching, considering the severity and impact of potential regressions.
Pre-remediation Regression Detection
Myrror examines potential regressions introduced by proposed fixes, providing a comprehensive risk assessment of:
- Direct vulnerabilities that are being addressed.
- Indirect vulnerabilities that may arise in transitive dependencies.
Automatic Remediation Plan Generation
Myrror generates remediation plans that aim to minimize regressions by:
- Considering all potential regressions in the planning phase.
- Generating a plan that balances remediation effectiveness with the introduction of the fewest possible new vulnerabilities.
Operational Procedure
Identify and Suggest Fixes
- Myrror identifies necessary actions to remediate vulnerabilities and suggests appropriate fixes, taking into account the impact of package version changes.
Calculate Optimal Patch Order
- Myrror calculates the best sequence for patch implementation to minimize the introduction of new vulnerabilities.
Generate Action Plan
- Myrror generates a detailed action plan for remediation, considering all newly introduced vulnerabilities and the overall impact on both direct and transitive dependencies.