	US 11,748,458 B2
	Systems and methods for a governance engine
Soumik Sarkar, Redwood City, CA (US)
Assigned to CodeLogic, Inc., Foster City, CA (US)
Filed by Crosscode, Inc., Foster City, CA (US)
Filed on Apr. 15, 2020, as Appl. No. 16/849,719.
Prior Publication US 2021/0326411 A1, Oct. 21, 2021
Int. Cl. G06F 21/12 (2013.01); G06F 8/10 (2018.01); G06F 21/57 (2013.01); G06F 8/77 (2018.01); G06F 8/75 (2018.01)

CPC G06F 21/125 (2013.01) [G06F 8/10 (2013.01); G06F 8/75 (2013.01); G06F 8/77 (2013.01); G06F 21/577 (2013.01)]

17 Claims

1. A computer-implemented method for enforcing rules governing software in an enterprise, comprising, on a governance asset, executing a governance engine configured to:

receive at least one rule specifying at least one trigger and at least one output;

receive a set of potential vulnerabilities;

receive a set of detected changes in dependencies in an enterprise from a delta agent based on a comparison of subsequent dependency graphs to previous dependency graphs;

examine the set of detected changes for changes that implicate a trigger of a rule;

compare any new dependencies contained in the set of detected changes for nodes identified in the set of potential vulnerabilities, and generate an output identifying any positive results of such comparison; and

if a trigger is implicated by a change, execute the one or more outputs associated with the implicated trigger.