Chapter 2. MTA 7.3.1

FIPS is now supported in MTA

Federal Information Processing Standards (FIPS) are a set of computer security standards developed by the United States federal government in line with the Federal Information Security Management Act (FISMA).

MTA reports generated after a CLI analysis now display the issue description

Previously, after running an analysis in the CLI, MTA incorrectly displayed the incident message with the issue description for issues listed in the static report. This issue has been resolved in MTA 7.3.1. (MTA-5293)

MTA user interface now completes application analysis in clusters with low resources

Previously, when you ran containerized application analysis in a cluster with slower disk I/O or low storage, the technology discovery took longer and the analysis failed because the rule execution timed out with the error unable to ask for Konveyor rule entry. This issue has been resolved in MTA 7.3.1. (MTA-5369)

Custom rules are now triggered for applications without the pom file

Previously, MTA did not trigger custom rules for applications without the pom file. This issue has been resolved in MTA 7.3.1. MTA-5049

MTA now triggers custom rules for application analysis

Previously, MTA did not trigger custom rules when analyzing applications. This issue has been resolved in MTA 7.3.1. (MTA-4885)

MTA now analyzes Java applications without false positives

Previously, MTA sometimes generated a false positive by matching line 1 of a Java file. This issue has been resolved in MTA 7.3.1. (MTA-4918)

MTA CLI analysis is now optimized for multi-module binaries with dependencies

Previously, when you analyzed multi-module binaries in the MTA CLI, the analysis could take a long time to complete if dependency resolution failed. This issue has been resolved in MTA 7.3.1. (MTA-5398)

MTA CLI now allows disabling dependency rules for analysis

Previously, MTA CLI ran dependency rules during application analysis without an option to skip such rules. This issue has been resolved in MTA 7.3.1. (MTA-5399)

MTA user interface now allows the SSH URL of a Git repository as a source

Previously, MTA user interface did not permit you to enter the SSH URL of a Git repository as the source application. This issue has been resolved in MTA 7.3.1. (MTA-5385)

MTA user interface now creates a Tackle custom resource that requires authentication

Previously in MTA user interface, creation of Tackle CR with the feature_auth_required field set to true failed. This issue has been resolved in MTA 7.3.1. (MTA-5386)

MTA now runs Java rules when analyzing Java binaries in Windows

Previously, when you performed a containerless analysis of compiled Java applications in Windows, MTA did not match a Java rule and generated a Java Model (code 969) error. As a result, some rules did not trigger issues in the analysis report. This issue has been resolved in MTA 7.3.1. (MTA-5427)

MTA CLI now analyzes non-Java applications in containerized mode

Previously, when you analyzed non-Java applications, MTA initiated the analysis in containerless mode. This issue has been resolved in MTA 7.3.1. (MTA-5068)

Resources limits and requests are now present on all pods

Previously in MTA 7.3.1, all pods created by the mta-operator and the pod for the operator have resource limits and requests set. This way they also work in an environment where resource limits and requests are required, for example, when a project has resource quotas defined. (MTA-5426)

Running analysis on large .EAR binary files obtains differents results

When analyzing binary applications, MTA relies on the Maven search index to determine whether dependencies are internal to the application or whether the application is installed as an open-source dependency. Depending on the availability of the Maven search index, it is assumed that an open-source dependency is internal to the application and includes the dependency in the analysis results. In this case, analysis returns more incidents and greater effort to address issues found in dependencies, even if the user does not expect to see those results. (MTA-5588)

MTA CLI generates a process error in log after Java binary analysis in Windows

When you analyze Java binaries in Windows, MTA CLI generates a process error when deleting files in the exploded directory after moving the decompiled files to the Java project path. This error does not affect the analysis results. Currently, there is no workaround for this issue. (MTA-5355)

MTA CLI does not detect dependencies for Gradle projects

When you analyze Gradle projects in containerless mode, the MTA CLI does not detect dependencies during analysis. (MTA-4033)

MTA user interface static reports do not display rule description in incidents

In incidents that are found in the static report after analysis, MTA user interface does not describe the rule that triggered the incident. (MTA-5643)

.NET Framework application analysis fails in the MTA CLI

When you analyze .NET Framework applications in Windows containers by using the MTA CLI, the analysis fails for the following environment variables: