Give Your Security and Compliance Posture a Boost with OpsLevel’s Enhanced Package Visibility and Checks

OpsLevel’s new package visibility update allows teams to automatically gather package version information from integrated Git repositories. This automated collection ensures that you always have up-to-date information about the package versions being used across your services. Using this insight, teams can quickly identify outdated or vulnerable packages and take necessary action to update them.

This feature is particularly beneficial for organizations in highly-regulated industries that need to maintain a strict level of software hygiene and security. By having a clear overview of all the packages in use, teams can proactively manage their dependencies and mitigate potential security risks.

Running Checks on Packages

In addition to visibility, OpsLevel now allows users to run Checks on packages directly within the platform. These Checks can verify the presence and versions of specific packages, which is crucial for compliance and security. For example, if a new vulnerability is discovered in a particular package version, you can quickly run a Check to ensure that all instances of that package in your repositories are updated to a safe version.

‍

This capability is controlled through settings on each source control integration, making it flexible and customizable to fit your organization’s needs. 

Benefits of the New Feature

• Improved Security: By ensuring that all packages are up-to-date and free from known vulnerabilities, you can significantly enhance the security of your software projects.
• Compliance: Automatically verifying package versions helps in maintaining compliance with internal and external standards. Scan newly added services for known vulnerable or outdated package versions.
• Efficiency: Automated collection and Checks reduce the manual effort required to manage dependencies, freeing up your engineering teams to focus on more critical tasks.

Get Organized with Campaigns

The power of this feature really comes through in OpsLevel’s campaigns. When a package version has been identified that requires updating, users can create a campaign to coordinate the remediation. Campaigns allow you to add all of the documentation you need such as CVE information, upgrade guides, and internal guidance so everyone is working from the same place with the same information to get the package version updates down consistently, quickly, and efficiently.

Not only do Campaigns help your teams create structure for remediation and updates, but they also provide progress tracking. This is hugely beneficial when trying to assess the amount of time teams spend fixing vulnerability packages and how much that detracts from development time. This is particularly useful in large, distributed organizations where teams may be impacted differently.

OpsLevel’s new package visibility and Checks feature is a significant step forward in ensuring your software standards and service levels. By automating the collection of package information and running Checks directly within the platform, OpsLevel helps teams maintain a robust and compliant software environment. These enhancements not only improve efficiency but also provide peace of mind that your software is secure and up-to-date.

Learn more in our docs.

‍