-
Dependency-Check is a utility that identifies project dependencies and checks if there are any...Pricing:
- Open Source
I use OpenCVE for alerts but it doesn't have everything for full coverage we have whitesource hooked into our CI pipelines. OWASP dependency check is a free alternative: https://owasp.org/www-project-dependency-check/.
#Security #Software Development #Code Analysis 15 social mentions
-
Open source license compliance and dependency analysisPricing:
- Open Source
- Official Pricing
Our current project runs a Fossa scan as part of the automatic pipeline.
#Security #Code Analysis #Web Application Security 7 social mentions