公司简介神州网信技术有限公司是在中央有关部门指导下,由 中国电子科技集团有限公司 与 微软公司 共同成立的中方控股合资公司。神州网信于2016年初开始筹建,9月完成注册,致力于为中国政府机构和关键信息基础设施领域的国有企业提供安全可控、技术先进、符合监管部门及用户要求的桌面操作系统产品和服务。神州网信的短期目标是尽快解决 Windows10 操作系统的安全可控、服务与数据安全问题,以满足政府等特殊领域用户对安全先进操作系统产品和升级换代的迫切需求。长期目标是从安全可控入手,通过深度技术合作掌握核心技术,通过开放合作培养国际化高端管理和技术人才,快速提升国内技术力量和人才储备,激发创新活力,助力中国创造更多世界一流技术,成为科技创新的引领者。更多信息请访问官方网站。 Company ProfileCMIT is a Chinese holding JV jointly established by China Electronics Technology Group Corporation and Microsoft Corporation, under the guidance of relevant authorities of the central government. Since its establishment in September, 2016, CMIT is dedicated to providing secure, controllable, technologically advanced desktop operating system products and services that are in line with Chinese informatization strategy, satisfying users from Chinese government agencies and state-owned enterprises in the field of critical information infrastructure. The short-term goal of CMIT is to solve the service and data security compliance of Windows 10 operating system as soon as possible, to meet the urgent needs of users in special fields such as government for advanced security operating system products and upgrades. The long-term goal is to acquire core technologies through in-depth cooperation, cultivate top international talent in fields of management and information technology, stimulate innovation and accelerate China to become a leader in scientific and technological innovation. For more information please visit Official website 背景介绍CMOS-VE 是由 神州网信技术有限公司 提供的 安全治理系统 中提供第三方组件安全漏洞查询及自动告警的服务产品。CMOS-VE extension是CMOS-VE的扩展程序,可以在Azure DevOps Services环境中使用,扫描您的项目,并检测开源组件和已知漏洞,生成检测报告,并提供完善建议。为您提供支持大多数常见的编程语言(1.0版本仅支持python),并持续追踪多个开源漏洞数据库,如:NVD,CVE等。在您的Azure DevOps Services环境中,添加CMOS-VE扩展,并配置项目信息,即可完成第三方组件安全漏洞。 Background IntroductionCMOS-VE is a service product that provides third-party component security vulnerability query and automatic alarm in the security governance system provided by China Network Information Technology Co., LTD. CMOS-VE extension is an extension of CMOS-VE, which can be used in the Azure DevOps Services environment to scan your project, detect open source components and known vulnerabilities, generate detection reports, and provide improvement suggestions. Provide you with support for most common programming languages (version 1.0 only supports python), and keep track of multiple open source vulnerability databases, such as: NVD, CVE, etc. In your Azure DevOps Services environment, add CMOS-VE extensions and configure project information to complete third-party component security vulnerabilities. |