Patch streaming
Requiring development teams to upgrade software is often very difficult. With Endor Magic Patches, security risks can be fixed seamlessly during the next software build by streaming the patches.
Streaming an Endor Labs Patch for each build allows you to automatically patch vulnerabilities in both direct and transitive dependencies so that you don’t have to go through the hard work of having a constant vulnerability backlog.
Opt into automated patching
To opt into streaming mode for Endor Magic Patches you must configure Endor Labs Patch factory as the top priority package repository in your package manager or Artifactory virtual repository. See Connect to the Endor Labs Patch Factory for more details.
To enable Endor Magic Patch Streaming.
- Navigate to Manage > Settings in your Endor Labs tenant.
- Click Enable Streaming Mode.
- Click Save Patch Settings and acknowledge the warning about reproducible builds.
Tradeoffs with automated patching
When you automatically patch your software, you also give up build reproducibility as the patches might introduce changes that affect the build process or the resulting binaries in ways that are not fully controlled or predictable.
Endor Labs works hard to ensure that you get the minimum viable security patch for your software. But in streaming mode, when a new patch is available it will automatically be applied to your software.
Feedback
Was this page helpful?
Thanks for the feedback. Write to us at support@endor.ai to tell us more.
Thanks for the feedback. Write to us at support@endor.ai to tell us more.