Dependency Check

Dependency-check is a utility that identifies project dependencies and checks if there are any known, publicly disclosed, vulnerabilities. Currently Java, .NET, and Python projects are supported. This tool can be part of a solution to the OWASP Top 10 2013 A9 - Using Components with Known Vulnerabilities.


Showing 1-45 of 220 topics
OWASP dependency-check 1.4.5 released! Jeremy Long 1/23/17
OWASP dependency-check 1.4.4 released! Jeremy Long 11/7/16
OWASP dependency-check 1.4.3 released! Jeremy Long 9/6/16
OWASP dependency-check 1.4.2 released! Jeremy Long 8/3/16
OWASP dependency-check 1.3.3 released! Jeremy Long 5/25/16
OWASP dependency-check 1.3.1 Released! Jeremy Long 9/21/15
dependency-check 1.3.0 released! Jeremy Long 8/5/15
dependency-check 1.2.11 released! Jeremy Long 5/13/15
dependency-check 1.2.10 released! Jeremy Long 4/13/15
dependency-check 1.2.9 released Jeremy Long 3/7/15
dependency-check 1.2.8 released! Jeremy Long 12/28/14
dependency-check 1.2.7 released! Jeremy Long 12/9/14
dependency-check 1.2.6 released! Jeremy Long 11/17/14
dependency-check 1.2.5 released Jeremy Long 9/17/14
dependency-check 1.2.3 released Jeremy Long 6/28/14
dependency-check 1.2.1 released Jeremy Long 5/10/14
dependency-check 1.2.0 released Jeremy Long 4/29/14
dependency-check-1.1.4 released Jeremy Long 3/31/14
dependency-check 1.1.3 released Jeremy Long 3/11/14
dependency-check 1.1.2 released Jeremy Long 3/4/14
dependency-check 1.0.8 released Jeremy Long 2/10/14
dependency-check 1.1.1 released Jeremy Long 1/30/14
dependency-check v1.0.7 released Jeremy Long 1/12/14
dependency-check version 1.0.2 released Jeremy Long 9/3/13
dependency-check 1.0.1 Jeremy Long 8/10/13
ODC/ODT talk at OWASP Summit 2017 Steve Springett 6/16/17
Open to integration with Victims Hashing or Data? Jason Shepherd 6/16/17
Dependency check plugin in jenkinsfile Javi D R 6/15/17
Problems with Jenkins OWASP plugin Tony Sweeney 6/15/17
What determines which CVEs are populated in dc.h2.db? Arbi Sookazian 6/8/17
Fake files to extend results to technical components Philippe PAULUS 6/5/17
executing dependency-check:aggregate goal from Java client in a build environment Arbi Sookazian 6/3/17
Does the absence of a CVE always result in a false positive? - mule-module-pgp-3.8.3.jar sarma....@gmail.com 5/26/17
viewing/querying the NVD H2 data Arbi Sookazian 5/25/17
Vulnerability assessment of third party vendor libraries - closed source sarma....@gmail.com 5/23/17
Maven plugin issue when POM path contains symlink Piyush Mittal 5/17/17
Issue: Neither log file getting created nor details getting posted on Jenkins Console. Piyush Mittal 5/16/17
dependency check reports with multi level POMs Arbi Sookazian 5/16/17
multilple layers of inheritance in POMs Arbi Sookazian 5/16/17
multiple thread for optimized dependency check processing Arbi Sookazian 5/15/17
CVE-2016-5195 not imorted from NVD Vít Šesták 5/14/17
[1.4.4] Mysterious effect when matching by CPE Vít Šesták 5/14/17
How to suppress for a set of CPE based on regex Scott Marsh 5/14/17
"No route to host (Host unreachable)" when using mavenSettingsProxyId Kaj Hejer 5/14/17
error: org.owasp.dependencycheck.xml.pom.PomParseException for qdox:qdox:1.6.1:pom mbw...@gmail.com 5/14/17
More topics »