From 86b7595539790bc01311743800c52f1ba3d3cb13 Mon Sep 17 00:00:00 2001 From: asafambar Date: Tue, 11 Jul 2023 20:58:52 +0300 Subject: [PATCH] Fix CR. --- documentation/CLI-for-JFrog-Curation.md | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/documentation/CLI-for-JFrog-Curation.md b/documentation/CLI-for-JFrog-Curation.md index f009d8ac0..d09a0113a 100644 --- a/documentation/CLI-for-JFrog-Curation.md +++ b/documentation/CLI-for-JFrog-Curation.md @@ -11,7 +11,7 @@ What can you do with Curation? * Protect against known and unknown threats, allowing only trusted software packages into your SDLC. * Create policies to block packages with known vulnerabilities, malicious code, operational risk, or license compliance issues. -For more information on JFrog Curation and how to set it up, see the JFrog Curation general documentation. (need to add link after it goes live). +For more information on JFrog Curation and how to set it up, see the JFrog Curation general documentation. JFrog Curation requires [Xray version 3.78.9](https://jfrog.com/help/r/jfrog-release-information/xray-3.78.9) and above, and [Artifactory version 7.63.2](https://jfrog.com/help/r/jfrog-release-information/artifactory-7.63.2-cloud) and above. It also requires Enterprise X and Enterprise + subscriptions. @@ -27,11 +27,11 @@ Audit your Project with JFrog Curation The **jf curation-audit** command enables developers to scan project dependencies to find packages that were blocked by the JFrog curation service. This command provides developers with more detailed information, such as whether the blocked package is the project’s direct dependency or is a transitive dependency. This information helps developers to resolve blocked packages more efficiently as they will be able to make a more informative decision based on what Policy violation occurred and what exactly needs to be resolved. -For each blocked package the CLI provides the violated Curation Policies, The command builds a deep dependencies graph for the project, and requests the Curation status by a HEAD request for each node in the tree. It uses the package manager that is used in the project to build the dependencies graph. +For each blocked package the CLI provides the violated Curation Policies. The command builds a deep dependencies graph for the project, and requests the Curation status by a HEAD request for each node in the tree. It uses the package manager that is used in the project to build the dependencies graph. Before running the command, do the following: -1) Connect the JFrog CLI to your JFrog Platform instance by running the jf c add command. -2) Ensure your project is configured in the JFrog CLI with the repository you would like to resolve dependencies from. Set the repository with the jf npmc command inside the project directory. +1) Connect the JFrog CLI to your JFrog Platform instance by running the **jf c add** command. +2) Ensure your project is configured in the JFrog CLI with the repository you would like to resolve dependencies from. Set the repository with the **jf npmc** command inside the project directory.