Overview

The Nexus IQ Extension for Visual Studio empowers developers with intelligence about open source components, allowing informed selection of components that are free from vulnerabilities and license risk at the earliest possible phase of the SDLC.

Nexus Lifecycle

In a DevOps world, the only way to deliver secure applications at scale is to rely on precise intelligence about the quality of the open source components used within those applications. Nexus Lifecycle provides the most precise intelligence regarding security vulnerabilities, license risk, and architectural quality of open source components and delivers that information directly within the Visual Studio IDE as well as other tools used throughout the DevOps toolchain. Automate your open source policies with confidence and deliver applications at scale by eliminating manual processes and human review.

Nexus IQ for Visual Studio

The Nexus IQ Extension for Visual Studio renders a bill of materials of all open source components within a .NET solution. It provides a threat level for each component as determined by your organization’s tailored policy. With the version graph control, detailed information is available for all versions of an open source component allowing informed choices on which version of a components meets the standards for your software.

More information about the Nexus IQ Extension for Visual Studio can be found in IQ for Visual Studio.

Requirements

The Nexus IQ Extension requires Nexus Lifecycle

Changes

1.3.0

• added cert authentication option for VS IQ extension

1.2.0

• disables JavaScript popup windows when IQ Server is not accessible which blocked activities including existing Visual Studio