Identify & Resolve Security Vulnerabilities Faster
June 2021All Tiers
Shorten the lengthy remediation process of investigating, rebuilding, retesting and updating runtime environments. The ActiveState Platform lets you find, fix and automatically rebuild a secure version of your Python, Perl and Tcl environments in minutes, decreasing Mean Time To Remediation (MTTR) from days to hours.
Read How To Remediate Your Open Source Vulnerabilities Quicker or watch a demonstration.
Python 3.9 – Beta
March 2021All Tiers
We’re introducing a whole new way to work with Python from ActiveState. Rather than a monolithic ActivePython distribution, our Python 3.9 release lets you:
- Manage packages with a single toolchain for both Windows and Linux -- reduce tool maintenance overhead
- Deploy into a virtual environment by default (simpler than venv) -- run multiple versions of Python without dependency conflicts
- Automatically build dependencies from source in parallel, including linked C libraries -- faster, more secure Python builds
Unlike ActivePython, our Python 3.9 provides:
- A much smaller footprint -- just the language and the packages you need to get started
- Standard licensing -- all the packages you install have just their original licensing
- Command line installation -- automated installation with a single line of code
Ready to try it out?
- Build your own version (select “Python” -> “Custom Python Build” -> version 3.9.2), or
- Download just the language and our State Tool CLI and go from there.
- To get started with State Tool, check out our cheat sheet, which shows you how to search/install/remove packages, and otherwise manage your environment.
Problems? Questions? Create a post in the ActiveState Community Forums and let us know.
CLI-Enabled Security/CVE Reports – Beta
March 2021Business Tier, Enterprise Tier
View the number and severity of vulnerabilities in your Python or Perl projects at a glance, or access a detailed report using the State Tool by running state cve.
Project Branching
February 2021All Tiers
Similar to a git branch, those on paid tiers can now create branches of their projects in order to make different configurations for debug, test, production, etc. For example, the main configuration of a runtime environment might be for development and test purposes, but you can create a child configuration for production purposes that doesn’t include test harnesses.In this way, you need only centrally maintain one main runtime that all children inherit. See how it works.
Role-Based Access Control (RBAC)
February 2021All Tiers
You can now add users to your organization on the ActiveState Platform and assign them a role:
- Read Only - user can only install and work with your runtime environments
- Editor - user can edit existing runtime environments, as well as create new ones
- Admin - user can edit and create runtime environments, as well as invite others to your organization
In this way you can provide greater control over how your users interact with your runtime environments. For example, you may want your lead developer to be the only person to be able to create and modify the runtime environment used by their team.
Python 2.7.18.3 Now Available
February 2021Business Tier, Enterprise Tier
A critical security vulnerability (CVE-2021-3177) that allows for buffer overrun exploits, such as denial of service or the running of malicious code, affects Python 2. As such, we have released a fix for Python 2 as part of our Python 2 End of Life extended support. We have also made the source code available for security experts and open source maintainers to review and incorporate into their projects.
Perl 5.32.1 Now Available
February 2021All Tiers
ActiveState has released Perl 5.32.1 which includes memory leak fixes for Data::Dumper, as well as upgrades to DynaLoader, Module::CoreList, Opcode and Safe. This release also includes warnings about evaluating untrusted code with the perl interpreter. Create a Perl 5.32.1 runtime environment for your project by selecting “Custom Perl Build”.
Security/CVE Reports via API
January 2021All Tiers
Our Build Graph API provides a programmatic interface to the ActiveState Platform you can query to quickly obtain details about your Python or Perl project, as well as access the source code for dependencies in your environment. It will now also provide you with:
- Number and severity level of all vulnerabilities in your environment
- Group dependencies by level of vulnerability
The simplest way to check your environment for vulnerabilities is by using our interactive documentation. See how to view vulnerabilities with our Platform.
Proactively ensure security of your Python or Perl projects with on-demand security reports.