Skip to main content

Documentation Index

Fetch the complete documentation index at: https://docs.endorlabs.com/llms.txt

Use this file to discover all available pages before exploring further.

We are excited to introduce the latest features and enhancements in Endor Labs.

Bazel support for TypeScript projects

New Endor Labs now supports Bazel scans for TypeScript projects with rules_ts. Scan ts_project and ts_project_rule targets. Both the WORKSPACE model and Bzlmod are supported with Bazel aspects. Requires rules_ts >= 1.0.0. For more information, see Bazel and Bazel Aspects.

Container inventory

New Endor Labs now introduces Container Inventory which provides a centralized view of all container images across your namespace, including shared base images and application images. It helps you track where the images are used, understand relationships between them, and identify potential risk exposure. For more information, see Container findings.

Bitbucket Cloud App authentication with email and API token

Enhancement Endor Labs now supports connecting the Bitbucket Cloud App with an Atlassian account email and API token. For more information, see Deploy Endor Labs Bitbucket App in Bitbucket Cloud and Create an API token.

Filter findings by discovery type

Enhancement You can now filter findings by how a dependency is discovered using the Discovery type attribute filter. This gives you better visibility into dependency origins if it was through manifest, phantom, and segment match types. For more information, see Finding attributes.

Dependency file location visualization for C/C++ packages

Enhancement C/C++ scans now show dependency file locations as a visualization for each matched dependency. Expand the tree to see which source paths led to its identification. For more information, see Scan C/C++.

Create Jira issues from Findings

Enhancement You can now create Jira issues manually from Findings for one or more findings. This allows you to act on findings that are not covered by an existing action policy, without waiting for a scheduled scan. Every issue created is recorded in Notifications as an On-demand notification. For more information, see Create Jira issues from Findings.

Jira integration enhancements

Enhancement Endor Labs Jira integration now includes the following updates:
  • You can now use scoped API tokens for the Jira integration, limiting token access to only the permissions required and improving token tracking and management.
  • You can configure the Jira integration using a service account, keeping credentials independent of individual users.
For more information, see Jira integration with Endor Labs.

Package Firewall policy

Enhancement Endor Labs now offers Package Firewall policies, giving you finer control over package installations beyond malware detection. Configure criteria such as restricted licenses and minimum package age to determine when the Package Firewall blocks or warns on package installations. You can also define exceptions to allow specific packages or version ranges to bypass all Package Firewall checks. For more information, see Package Firewall policy.