Skip to main content

View library data in Explorer

Viewing library data in Explorer is different than viewing other entities.

Before you begin

  • To view library data, you need an Assess or an AVM license.

Library entities in Explorer

The root library entity represents a collection of all open-source transitive dependencies that the root library uses, either directly or indirectly. This entity shows the connection to each application, and represents all libraries that the connected application references, both root and transitive.

Image shows a root library entity

Individual library entities represent individual libraries. They can be root libraries, transitive dependencies, or both - an application can reference a library directly or transitively.

Expanding an entity show the next level of dependencies. For a root library entity, it shows all the root libraries for the application. Individual library entities show the next level of dependencies.

Selecting Expand all for any entity shows he entire dependency tree for that entity. For root library entities, Expand all shows the entire dependency tree for the application.

If you search for a CVE, the Expand all matching is available. This option shows the entities that match the CVE you searched for.

The details you can view varies depending on the type of entity you select.

  • The details for a root library entity include all libraries in the application: a text representation of the dependency tree, associated issues, and CVEs.

  • The details for an individual library entity includes details of that particular library, as well as CVE information for lower-level libraries.

Steps

  1. To easily view library entities, select the Filter icon (icon-filter.svg at the top of the Explorer and select Library as the Type.

  2. To view details for a library root entity, select it.

    This action opens the details panel for the entity.

  3. To view the transitive dependencies for any library entity, select the entity. Select Expand All to view all transitive dependencies, Expand to view only the next level of transitive dependencies. or Expand all matching if you searched for a CVE.

    Image show the Expand options after selecting a library entity.

  4. To view additional details for a transitive dependency entity, select it.

    This action opens the details panel for the entity.

  5. To close a view of any library entity, select it and then, select Collapse.

Depending on the type of data that Explorer displays for a library entity, you might have the option to select links in the details panel for additional information. For example:

  • CVE links: Detail panels that show CVEs have a link to the NIST description.

  • Issue links: Detail panels that show associated issues have a link to the Issues view.

In this section: