| 主权项 |
1. A computerized method for mitigating software vulnerabilities in components of a software application, comprising:
receiving, at a client device, a plurality of components for a software application, wherein the plurality of components includes: components that form at least one software application, and one or more additional components for one or more of the components that form the at least one software application; wherein the one or more additional components are pre-defined alternate component versions which functionally replicate their corresponding component from the one or more components that form the at least one software application but employ different programming logic to prevent vulnerability exploitation; in response to information identifying at least one compromised component of the components that form the at least one software application, where the compromise comprises a vulnerability, selecting a non-compromised alternate component version for each compromised component from the one or more additional components, wherein the alternate component version restricts functionality problems caused by the vulnerability of the identified compromised component; replacing, when the at least one software application is currently installed, the each compromised component by loading its corresponding selected non-compromised alternate component version; and installing, when the at least one software application is not currently installed, the at least one software application using the non-compromised alternate component version for the each compromised component. |
