Become a sponsor to Jeremy Long
In 2012 I released the first version of dependency-check; one of the first Software Composition Analysis (SCA) tools available. SCA is a critical part of releasing code - teams need to ensure they are using libraries that are free of known security defects. Dependency-check can help teams identify known vulnerable libraries being used in their project.
By sponsoring me, you will help me spend more time maintaining dependency-check and other open source projects. Note that this is not a contribution to OWASP - but rather sponsorship of my development work on dependency-check and other open source projects.
Thanks
Featured work
-
jeremylong/DependencyCheck
OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.
Java 6,574 -
jeremylong/lein-dependency-check
A leiningen plugin for detecting vulnerable project dependencies
Clojure -
jeremylong/sbt-dependency-check
SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs).
Scala