Connect to the Endor Labs Patch Factory
Learn how to connect to the Endor Labs Patch Factory and use an Endor patch.
Endor patches is a curated repository of software packages with backported vulnerability fixes for your security and convenience. Endor Labs identifies vulnerable functions and the commits that fixed each vulnerability in the open-source community. These fixes, along with necessary supporting commits, are applied to older software versions to create a minimum viable security patch for each library supported by Endor Labs. See Connect to the Endor Patch Factory to get started.
Endor patches are a result of extensive research. In security, trust is crucial. Therefore, the patch details are fully transparent. The builds are hermetic ensuring they are consistent, reproducable, and reliable. The exact code changes, along with builds, build steps, and logs, are auditable and available for review. See information about patch transparency and trust for more details
Customers can access Endor Patches patches through a hosted repository, where each software component has three types of versions:
-endor-latest
to a package version.By minimizing changes to fix known vulnerabilities and providing complete transparency, Endor Patches offer a comprehensive solution to help teams quickly address vulnerabilities, even when a fix is challenging.
Learn how to connect to the Endor Labs Patch Factory and use an Endor patch.
Learn how to minimize changes for an Endor patch.
Build trust in your Endor patches.
Learn how to configure your JFrog Artifactory setup to use Endor patches.
Learn how to configure yourSonatype Nexus Repository setup to use Endor patches.
Was this page helpful?
Thanks for the feedback. Write to us at support@endor.ai to tell us more.
Thanks for the feedback. Write to us at support@endor.ai to tell us more.