Dependency-Check is a utility that identifies project dependencies and checks if there are any known, publicly disclosed, vulnerabilities. This tool can be part of the solution to the OWASP Top 10 2017: A9 - Using Components with Known Vulnerabilities. This plug-in can independently execute a Dependency-Check analysis and visualize results.
More information can be found on the wiki.
Subscribe: [[email protected]] subscribe
Post: [[email protected]] post
Dependency-Check is Copyright (c) 2012-2019 Jeremy Long. All Rights Reserved.
Dependency-Check Jenkins Plugin is Copyright (c) 2013-2019 Steve Springett. All Rights Reserved.
Permission to modify and redistribute is granted under the terms of the Apache 2.0 license. See the [LICENSE.txt] license file for the full license.