What is Azul Vulnerability Detection?
Azul Vulnerability Detection connects previously self-reliant JVMs to remain self-reliant, but enables runtime and application security analysis. Vulnerability Detection helps security, understanding where/how vulnerable code is loaded.
Vulnerability Detection is a production-speed software composition analyzer. By using the JVM to retain information about loaded code, Azul Vulnerability Detection can apply analysis to look back and see where new vulnerabilities are used and/or present.
When Java applications launch with vulnerability detection, the JVM operates at full speed with an asycnchronous collector that communicates with Azul Vulnerability Detection. This data can later detect standard JAR files, shaded JARs, flattened JARs, and other packaging types.
By working in the JVM itself, the collector operates at peak speed and does not rely on instrumentation — this independence can collect data from applications where jlink removed the java.instrument module.