# AppControl Repository The AppControl Repository is a centralized database maintained by Blue Storm that contains information on vulnerabilities, component versions, and log solutions. It is updated both manually and automatically to ensure accuracy and completeness. **Data Sources and Updates** The repository is automatically updated with new information from the following sources every 24 hours: * **Google OSV Index** – A widely used database for open-source component vulnerabilities (Java and Javascript Libraries). * **Siemens Security Advisory List** – Provides security advisories relevant to Mendix components (Modules and Mendix Runtimes) * **Mendix Marketplace** – Contains information about available Mendix components and their versions. * **Maven Repository** – A widely used repository for Java dependencies, included in many components used in Mendix apps. * **NPM Registry** – A widely used repository for Javascript libraries, included in many components used in Mendix apps. **Component Detection and Identification** AppControl detects the components used in applications through: * **Component Metadata Analysis:** Extracting metadata from application files to identify used components (E.g. manifest files). * **File Fingerprinting:** Generating SHA1 and SHA256 hashes of files and comparing them to known components in the repository. To improve component detection, AppControl shares anonymous fingerprinting information with Blue Storm. If an unidentified component is detected, Blue Storm support is notified to manually analyze and classify the component. **Repository Synchronization** Each customer instance of AppControl synchronizes with the central repository once per day to ensure it has the latest information for policy checks and compliance monitoring. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.bluestorm.io/overview/product-architecture/appcontrol-repository.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.