Mastercard Incorporated
MANAGING SOFTWARE PATCHES BASED ON AUTOMATED RULE-BASED ANALYSIS AND TESTING

Abstract:

The disclosure herein describes managing software patches for software applications of computing devices. A release of a software patch associated with a software application of the computing devices is detected. The software patch is analyzed based on patch analysis rules, wherein the patch analysis rules include vulnerability rules configured to indicate whether the released software patch addresses known vulnerabilities. Based on the analysis resulting in approval for installation of the patch, a current test image of the software application is identified, and the patch is applied to the test image to form a patched image. Tests are performed on the patched image, include patch-specific tests. Based on the results of the tests indicating that the patched image passed at least a subset of the tests, the software patch is applied to application instances of the software application on the computing devices, whereby the patch is deployed to the computing devices.