Anaconda Server enables you to upload, move, copy, share, and download an environment yaml file. An environment is a folder or directory that contains a specific collection of conda packages and their dependencies. This allows them to be maintained and run separately without interference from each other.For example, you may use a conda environment for only Python 2 and Python 2 packages, maintain another conda environment with only Python 3 and Python 3 packages, and maintain another for R language packages.
Viewing environment vulnerabilities is an early access feature for administrators only, and currently only operates when used in your base environment. This feature will be expanded and made more accessible in upcoming versions of Anaconda Server.
Use conda-audit to scan your conda environment and show the vulnerabilities associated with your projects.Open a terminal and activate your base environment.
Copy
Ask AI
conda activate base
Install conda-audit.
Copy
Ask AI
conda install conda-audit
Run the command:
Copy
Ask AI
# Replace <ENV-NAME> with the name of your environment. Make sure your spelling is exact.conda-audit -n <ENV-NAME>
A list of packages affected by CVEs and the name and score of the CVE is displayed. Packages that have been curated by Anaconda display a checkmark next to their name.
To produce a machine readable set of this data, run the command:
Copy
Ask AI
# Replace <ENV-NAME> with the name of your environment. Make sure your spelling is exact.conda-audit -n <ENV-NAME> --json
A list of packages and CVEs in JSON format is displayed.