Top 12 Open-Source Alternatives to OWASP Dependency-Track

Product categories

Code Analysis Cyber Security License Management Monitoring Tools News OS & Utilities Open Source Security Security & Privacy Security Monitoring Software Development Web Application Security

Summary

The top open-source alternatives to OWASP Dependency-Track are Snyk, FOSSA, and SonarQube. One of the criteria for ordering this list is the number of mentions that products have on reliable external sources. You can suggest additional sources through the form here.

Snyk Landing Page
1

Snyk

Snyk helps you use open source and stay secure. Continuously find and fix vulnerabilities for npm, Maven, NuGet, RubyGems, PyPI and much more.
Pricing:
- Open Source
#Security #Security Monitoring #Security CI 85 social mentions
FOSSA Landing Page
2

FOSSA

Open source license compliance and dependency analysis
Pricing:
- Open Source
#Security #Code Analysis #Web Application Security 7 social mentions
SonarQube Landing Page
3

SonarQube

SonarQube, a core component of the Sonar solution, is an open source, self-managed tool that systematically helps developers and organizations deliver Clean Code.
Pricing:
- Open Source
- Freemium
- Free Trial
- $150.0 / Annually
#Code Analysis #Code Review #Code Coverage 1 social mentions
Labs64 NetLicensing Landing Page
4

Labs64 NetLicensing

Monetize your digital products and services
Pricing:
- Open Source
- Freemium
- Free Trial
- €60.0 / Monthly (Basic Plan)
#License Management #Threat Detection And Prevention #Monitoring Tools 11 social mentions
David Landing Page
5

D

David

Watching your Node.js dependencies
Pricing:
- Open Source
#License Management #Security & Privacy #OS & Utilities
pyup.io Landing Page
6

pyup.io

Helps you to keep your dependencies updated and secure.
Pricing:
- Open Source
#License Management #OS & Utilities #Security & Privacy 2 social mentions
Dependency-Check Landing Page
7

DC

Dependency-Check

Dependency-Check is a utility that identifies project dependencies and checks if there are any...
Pricing:
- Open Source
#Security #Code Analysis #Web Application Security 16 social mentions
Trivy Landing Page
8

Trivy

A Simple and Comprehensive Vulnerability Scanner for Containers and other Artifacts, Suitable for CI
Pricing:
- Open Source
#Security & Privacy #Monitoring Tools #Cyber Security
Violinist.io Landing Page
9

Violinist.io

Automatically update your composer (php) dependencies
Pricing:
- Open Source
- Freemium
- Free Trial
- $10.0 / Monthly (5 private projects)
#Security #Software Development #News
NewReleases Landing Page
10

NewReleases

Stop wasting your time checking manually if some piece of software is updated. Get Email, Slack, Telegram, Discord, Hangouts Chat, Microsoft Teams, Mattermost, Rocket.Chat, or Webhooks notifications.
Pricing:
- Open Source
- Free
#Software Development #News #DevOps Services 18 social mentions
Sysdig Landing Page
11

Sysdig

Sysdig is an open source, system-level exploration that capture system state and activity from a running Linux instance, then save, filter and analyze.
Pricing:
- Open Source
#Security #Monitoring Tools #Developer Tools 2 social mentions
Sysdig Falco Landing Page
12

Sysdig Falco

Runtime Security
Pricing:
- Open Source
#Monitoring Tools #Cyber Security #Security 12 social mentions