Updates and recent posts about OWASP Dependency-Check..

Posts
Description

That's all about @OWASP Dependency-Check — explore more posts below...

Activity

@devopslinks added a new tool Syft , 1 hour, 4 minutes ago.

Activity

@kaptain added a new tool KubeLinter , 1 hour, 8 minutes ago.

Activity

@bridgecrewio started using tool checkov , 1 hour, 12 minutes ago.

Activity

@devopslinks added a new tool Grype , 1 hour, 15 minutes ago.

Activity

@kaptain added a new tool Hadolint , 1 hour, 23 minutes ago.

Activity

@varbear added a new tool Bandit , 1 hour, 26 minutes ago.

Activity

@devopslinks added a new tool JFrog Xray , 1 hour, 29 minutes ago.

Activity

@devopslinks added a new tool OWASP Dependency-Check , 1 hour, 33 minutes ago.

Activity

@varbear added a new tool pre-commit , 1 hour, 37 minutes ago.

Activity

@devopslinks added a new tool GitGuardian , 1 hour, 41 minutes ago.

OWASP Dependency-Check is an open source Software Composition Analysis (SCA) tool that scans application dependencies to detect publicly disclosed vulnerabilities. It analyzes project manifests, package metadata, and binary artifacts, then matches them against multiple vulnerability databases, including the NVD. Dependency-Check supports Java, JavaScript, .NET, Python, Ruby, and many other ecosystems. Teams integrate it into CI pipelines, IDEs, and build systems to catch vulnerable libraries early and maintain secure software supply chains. As part of the OWASP foundation, it is widely trusted for transparent, vendor-neutral security scanning.