Track Third-Party Component Health
See outdated or vulnerable open-source dependencies and plan remediation.
Before you start
| Who this is for | Architect, developer, security engineer |
| Role required | Viewer or higher |
| Prerequisites | Application analyzed with CAST Console 2.4+ and the com.castsoftware.highlight2mri extension |
Step 1: Open the Third-Party Components view
On the Welcome page, find Do you want to modernize your application? and click Third Party Components (or Third Party Components Upgrade).
[TODO: Screenshot]
Step 2: Read the component list
The view lists all detected open-source components with their version and health status. Components are flagged if they are outdated or have known vulnerabilities.
[TODO: Screenshot of the component list]
Step 3: Investigate a component
Click a component to see:
- The objects that use it
- The recommended upgrade version
- Known CVEs (if any)
Step 4: Tag and document remediation
For each component you plan to upgrade:
- Tag the relevant objects with a label like
upgrade-needed. - Add an annotation with the target version and a link to the migration guide.
Next steps
Feedback
Was this page helpful?