Scan with Endor Labs - Endor Labs Documentation

Deprecated: The each() function is deprecated. This message will be suppressed on further calls in /home/zhenxiangba/zhenxiangba.com/public_html/phproxy-improved-master/index.php on line 456
Scan with Endor Labs - Endor Labs Documentation

Endor Labs provides comprehensive scanning capabilities to identify security issues across your software supply chain. This section covers the different types of scans available and how to configure them.

SCA (Software Composition Analysis)

Scan open source dependencies for vulnerabilities with reachability analysis.

SAST (Static Application Security Testing)

Scan your first-party code for security vulnerabilities.

GitHub Actions

Scan GitHub Actions referenced in your workflows for vulnerabilities, malware, and risky configuration.

Secrets Detection

Scan your codebase for leaked secrets and sensitive data.

Container Scanning

Scan container images for vulnerabilities and secure your deployments.

Malware detection

Scan dependencies for malware and understand how it is detected, classified, and scored.

AI Models

Scan for and govern AI models in your codebase.

OSS Licenses

Identify and manage open source license compliance.

Scan Profiles

Configure scan profiles to customize how your projects are scanned.

Pull Request scans

Scan pull requests as they are raised in your repository.

Bazel

Scan monorepos with Endor Labs using Bazel.

Working with monorepos

Scan large monorepos with strategies for performance and coverage.

RSPM (Repository Security Posture Management)

Manage repository security posture and SCM configurations.

Namespaces

Scan Profiles

⌘I