OWASP Dependency Check
Dependency-Check is a Software Composition Analysis (SCA) tool that attempts to detect publicly disclosed vulnerabilities contained within a project’s dependencies. It does this by determining if there is a Common Platform Enumeration (CPE) identifier for a given dependency. If found, it will generate a report linking to the associated CVE entries.
Security DSLs provided by the Tool
Name
Description
Security Checks provided by the Tool
Name
Description
Checks that the analyzed project has no dependencies that are known to be insecure.