Key Benefit

DeployHub Provides Component Impact Analysis

DeployHub Predicts the Impact a New Component Update Has On the Software Supply Chain

DeployHub’s software supply chain management catalog provides component impact analysis, or blast radius, for the applications that depend on the component. DeployHub can predict a component impact on consuming logical applications before it is released. By publishing shared components to the DeployHub open source software supply chain security platform, application teams can track their application versions based on the shared components they use. As shared components are updated, DeployHub automatically builds the component impact analysis to clearly shows the blast radius for that component, listing all applications that will be impacted, even before it is deployed.  In addition, DeployHub automates the notifications of all impacted teams so they know that a new update is coming.

Component Impact Analysis, Critical in Decoupled Architectures

Updating software always involves risk. In a decoupled architecture, the risk increases due to the sheer number of updates being pushed through DevOps Pipelines. Knowing the impact of a component release provides actionable intelligence about the potential risk of that update.  For this reason, DeployHub exposes the blast radius, so IT teams have the impact analysis even before they deploy.

Vulnerabilities Blast Radius

In a decoupled architecture, independently deployed components have their own vulnerabilities. When a component vulnerability is found, DeployHub provides IT teams with the component impact analysis to contain the vulnerability quickly. Decoupled architectures add a level of complexity that requires more knowledge about all the pieces of the software supply chain. DeployHub helps IT teams understand what logical applications consume shared components to identify high-risk components. Knowing what component versions run across environments can expose where security patches must be applied. DeployHub helps teams implement a successful decoupled strategy by tracking who uses a component and communicating updates and broadcast vulnerabilities, providing teams with a rapid response when something goes wrong.

DeployHub's Component to Application Impact Map

Bring Your Blast Radius Into Focus Today

Signup for DeployHub Team and Know Your Blast Radius for Free

Signup for DeployHub Team, the free SaaS software supply chain security platform. DeployHub Team is based on the Ortelius open source project incubating at the Continuous Delivery Foundation.

Signup Today

Suggested Article

Managing a Components Blast Radius

Updating software always involves risk. In a decoupled architecture, the risk increases due to the sheer number of updates being pushed through DevOps Pipelines. Knowing the impact of a component release provides actionable intelligence about the potential risk of that update. This article explores the importance of knowing the blast radius of a single shared component across the organization.

Read Article

blast radius

Suggested Whitepaper

This whitepaper outlines how DeployHub can help you understand a component’s blast radius before you deploy.

Get the Whitepaper

Component blast radius

Further Reading on Supply Chain Security