AutoExpert™

AutoExpert™ is a new feature in both Palamida Enterprise and Compliance Editions. It enables the systems to learn from analysis results, and make future analysis more automated and accurate. AutoExpert™ uses Multi-indicator Detection (MID) rules to automatically process scan results to identify the name and version of the components found within a codebase. Both Enterprise and Compliance Editions come with over 20,000 MID rules, and more are added via an electronic update service on a regular basis.

AutoExpert™ captures the expertise of experienced analysts, and makes analysis of scan results more automated and accurate. It's a huge benefit in terms of productivity and consistency of results.

In addition to the MID rules supplied by Palamida, it's easy to create custom rules. Custom rules allow a development organization to train the system to recognize components and versions that are uniue to their environment. These custom rules can target not only Open Source components, but also any commercial or in-house components or modules that are used, and reused, within their projects. As an organization adds custom rules to the Palamida rules, the automation of scan analysis increase.

MID rules run automatically and the results are viewable throughout the system in reports and live views. Once components and versions are identified, the full range of metadata regarding license, vulnerabilities and cryptography is available to inform policy and remediation decisions.

AutoExpert™ represents the next level of Composition Analysis — a highly automated and accurate analysis technique that reduces audit rework, and lowers the cost of managing and securing a modern development process.

Detailed Inventory Screenshot