The additional functions include analytics that assess the difficulty of upgrading an open-source software package and the potential risk of application disruption. The ability allows DevSecOps teams to make more informed decisions on whether to upgrade or patch a module.

Source: SC Magazine