FOSSA - Open source license compliance and dependency analysis
SonarQube - SonarQube, a core component of the Sonar solution, is an open source, self-managed tool that systematically helps developers and organizations deliver Clean Code.
Ninka - License identification tool for source code.
WhiteSource - Find & fix security and compliance issues in open source libraries in real-time.
Snyk - Snyk helps you use open source and stay secure. Continuously find and fix vulnerabilities for npm, Maven, NuGet, RubyGems, PyPI and much more.
OWASP Dependency-Track - OWASP Dependency-Track is an intelligent Software Composition Analysis (SCA) platform that allows...