Top 12 Open-Source Alternatives to FOSSA

Product categories

Code Analysis Code Coverage Code Quality Developer Tools License Management OS & Utilities Open Source Security Security & Privacy Security CI Security Monitoring Software Development

Summary

The top open-source alternatives to FOSSA are Snyk, OWASP Dependency-Track, and SonarQube. One of the criteria for ordering this list is the number of mentions that products have on reliable external sources. You can suggest additional sources through the form here.

Snyk Landing Page
1

Snyk

Snyk helps you use open source and stay secure. Continuously find and fix vulnerabilities for npm, Maven, NuGet, RubyGems, PyPI and much more.
Pricing:
- Open Source
#Security #Security Monitoring #Security CI 85 social mentions
OWASP Dependency-Track Landing Page
2

OWASP Dependency-Track

OWASP Dependency-Track is an intelligent Software Composition Analysis (SCA) platform that allows...
Pricing:
- Open Source
#Security #Code Analysis #Security & Privacy 19 social mentions
SonarQube Landing Page
3

SonarQube

SonarQube, a core component of the Sonar solution, is an open source, self-managed tool that systematically helps developers and organizations deliver Clean Code.
Pricing:
- Open Source
- Freemium
- Free Trial
- $150.0 / Annually
#Code Analysis #Code Review #Code Coverage 1 social mentions
Crinkler Landing Page
4

C

Crinkler

Crinkler is an executable file compressor (or rather, a compressing linker) for Windows...
Pricing:
- Open Source
#Security & Privacy #Software Development #Software Engineering 1 social mentions
Dependency-Check Landing Page
5

DC

Dependency-Check

Dependency-Check is a utility that identifies project dependencies and checks if there are any...
Pricing:
- Open Source
#Security #Code Analysis #Web Application Security 16 social mentions
ESLint Landing Page
6

ESLint

The fully pluggable JavaScript code quality tool
Pricing:
- Open Source
#Code Coverage #Developer Tools #Code Quality 229 social mentions
Aikido Security Landing Page
7

Aikido Security

Aikido is an all-in-one platform for code & cloud security - without the irrelevant alerts.
Pricing:
- Open Source
- Freemium
- Free Trial
- $199.0 / Monthly (Standard)
#Web Application Security #Vulnerability Scanner #Security CI 1 social mentions
Sysdig Landing Page
8

Sysdig

Sysdig is an open source, system-level exploration that capture system state and activity from a running Linux instance, then save, filter and analyze.
Pricing:
- Open Source
#Security #Monitoring Tools #Developer Tools 2 social mentions
David Landing Page
9

D

David

Watching your Node.js dependencies
Pricing:
- Open Source
#License Management #Security & Privacy #OS & Utilities
waningflow.com
10

CR

CodeRoad

A way to view code based on dependencies analysis.
Pricing:
- Open Source
#Continuous Integration #Developer Tools #Security
pyup.io Landing Page
11

pyup.io

Helps you to keep your dependencies updated and secure.
Pricing:
- Open Source
#License Management #OS & Utilities #Security & Privacy 2 social mentions
NewReleases Landing Page
12

NewReleases

Stop wasting your time checking manually if some piece of software is updated. Get Email, Slack, Telegram, Discord, Hangouts Chat, Microsoft Teams, Mattermost, Rocket.Chat, or Webhooks notifications.
Pricing:
- Open Source
- Free
#Software Development #News #DevOps Services 18 social mentions