Scanning and Automated Discovery

This release includes the following enhancements to Code Insight scans and to the techniques used to discover and report inventory during scans.

SHA-1 Support Enabled by Default

The SHA-1 feature is now automatically enabled when a customer site first installs Code Insight version 2021 R4 or greater or migrates from a pre-2021 R4 version. (In the previous release, this feature was disabled by default, causing the System Administrator to perform an extra step to enable the feature.) This feature calculates the SHA-1 digests for files during scans. (MD5 digests are always calculated whether or not SHA-1 support is enabled.)

For complete details about this feature, see “Enabling Calculation of SHA-1 Digests for Scanned Files'' in the Code Insight Installation & Configuration Guide.

Support for the GitLab Forge

Automated Analysis has added support for the detection of OSS and third-party components in repositories in the GitLab forge.

Support for Direct Dependencies Go Modules

Automated Analysis has added support for the detection of direct dependencies in go.mod and _go.mod manifest files. Currently, this detection is supported from the Github forge only.