FIGUEIREDO FILHO, L. E. S.; http://lattes.cnpq.br/7564453259694582; FIGUEIREDO FILHO, Luciano Erick Sousa.
Resumen:
The growing use of third-party components in software projects has driven development efficiency but has also introduced significant security concerns. The lack of visibility and effective traceability of dependencies used can result in unknown vulnerabilities, highlighting the need to manage and assess these components. In response to these challenges, Trivy, an open-source vulnerability scanning tool, has become crucial in identifying and mitigating threats in software components. However, one of the main obstacles faced by users is the complexity in interpreting the data generated by the tool. Therefore, this work aims to develop a plugin for Trivy to enhance user experience by generating na interactive dashboard. Additionally, this document seeks to evaluate the developed tool through feedback from potential users, measuring the degree of satisfaction and effectiveness in vulnerability mitigation.