
We are excited to introduce a new functionality in the Upwind platform that directly addresses a key challenge in vulnerability management: quickly pinpointing the location of specific package versions. With this enhancement, you can now effortlessly track where your vulnerabilities reside, eliminating guesswork and speeding up your response time.
Understanding the full impact and scope of a vulnerability is critical to taking effective action. Upwind has always provided deep context for every new vulnerability finding, including:
- CVE: Information about the unique CVE and its potential impact on your environment.
- Package: The package where this vulnerability is found in your environment.
- Image: The image running in the vulnerable package.
- Resource: The resource that is impacted by this finding.
- Build context: Comprehensive context about build-time changes that impact this vulnerability, including the specific pull request and developer.

Building on these capabilities, our latest update now delivers even deeper context by showing the precise package version location. This gives you:
- Package location display: the finding details now show the exact location of the package version
- Powered by SBOM: This data is sourced directly from the SBOM generated by Upwind, making it easier to track and resolve vulnerabilities quickly
- Faster debugging: No more searching for where the affected package version is stored – it’s now visible at a glance.

Use Upwind’s vulnerability management capabilities to quickly prioritize your most critical risks, streamline investigations with ease, and achieve peace of mind by reducing your mean time to remediation. To learn more about how Upwind supercharges vulnerability management, schedule a demo today.