From 11107aa4d7cf64f1a268473422a268e0634403e0 Mon Sep 17 00:00:00 2001
From: Navaneeth Mysore Govindarajan <nmysore@sonatype.com>
Date: Mon, 12 Feb 2024 11:46:32 -0500
Subject: [PATCH] Update readme

---
 readme.md | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/readme.md b/readme.md
index 6ba0b0209..780cff419 100644
--- a/readme.md
+++ b/readme.md
@@ -13,9 +13,18 @@ Spring Petclinic is a [Spring Boot](https://spring.io/guides/gs/spring-boot) app
 ```bash
 git clone https://github.com/spring-projects/spring-petclinic.git
 cd spring-petclinic
+
+# This runs the integration tests which invoke vulnerable methods and the runtime labels set in IQ on:
+# - ch.qos.logback : logback-core : 1.4.11
+# - ch.qos.logback : logback-classic : 1.4.11
+# - org.springframework : spring-core : 6.1.1
 ./mvnw package
 
 # Note: Change the path the runtime-agent-1.0.7.jar as necessary
+# After starting the app, by navigating to http://localhost:8080/vets.html invokes vulnerable method call.
+# This will log the method call and set the runtime labels in IQ. 
+# If the label is already set due to integration tests, it will log as such. 
+# If needed, the labels can be deleted manually in IQ before starting the app.
 java -javaagent:../runtime-agent-1.0.7.jar \
   -Dsonatype.runtime.agent.enabled=true \
   -Dsonatype.runtime.agent.debugMode=false \