dependency-check

Dependency-Check is a security tool that scans project dependencies to identify known vulnerabilities. It supports various package managers and helps developers secure their software supply chain.

Features

Analyzes dependencies for security vulnerabilities
Supports multiple package managers like npm, Maven, and Gradle
Generates security reports with actionable insights
Integrates with CI/CD pipelines for automated scanning
Uses the National Vulnerability Database (NVD) for threat detection
Provides JSON, XML, and HTML output formats for flexibility

Project Samples

Project Activity

See All Activity >

Follow dependency-check

dependency-check Web Site

Other Useful Business Software

MongoDB Atlas runs apps anywhere

Deploy in 115+ regions with the modern database for every enterprise.

MongoDB Atlas gives you the freedom to build and run modern applications anywhere—across AWS, Azure, and Google Cloud. With global availability in over 115 regions, Atlas lets you deploy close to your users, meet compliance needs, and scale with confidence across any geography.

Start Free

Rate This Project

User Reviews

Be the first to post a review of dependency-check!

Additional Project Details

Operating Systems

Linux, Mac, Windows

Programming Language

JavaScript

Related Categories

JavaScript Package Managers

Registered

2025-03-04

Similar Business Software

eAuditor Cloud

eAuditor Cloud is a comprehensive SaaS platform for IT asset management, monitoring, security, and data protection. With more than 20 years of experience in corporate and public sector environments, it combines proven functionality with the accessibility and scalability of the cloud. The system...

See Software
AnyTree

Introducing AnyTree — the first software deployment system secured by the blockchain. On AnyTree, whatever apps developers distribute or use, are delivered exactly as they are supposed to be. The Software Supply Chain is a high-impact area. Yet there exists a distinctive lack of secure,...

See Software
PyPI

PyPI is the official repository for Python software packages, hosting hundreds of thousands of projects that developers can publish and users can discover and install. It supports both source distributions (“sdists”) and pre-built binary “wheels”, allowing packages to include native extensions...

See Software
Flox

Flox is a development environment manager and package tool that lets developers define, share, and replicate consistent environments across machines by leveraging the Nix ecosystem. Flox lets you create environments via a simple manifest.toml, layering and replacing dependencies precisely where...

See Software
Yarn

Yarn is a package manager which doubles down as project manager. Whether you work on one-shot projects or large monorepos, as a hobbyist or an enterprise user, we've got you covered. Split your project into sub-components kept within a single repository. Yarn guarantees that an install that...

See Software
Windows Package Manager (winget)

If you are new to the Windows Package Manager, you might want to Explore the Windows Package Manager tool. The packages available to the client are in the Windows Package Manager Community Repository. The client requires Windows 10 1809 (build 17763) or later at this time. Windows Server 2019 is...

See Software

Report inappropriate content

dependency-check

Checks which modules you have used in your code

Get an email when there's a new version of dependency-check

Features

Project Samples

Project Activity

Categories

Follow dependency-check

User Reviews

Additional Project Details

Operating Systems

Programming Language

Related Categories

Registered