Catch vulnerabilities in your projects, automatically on every pull request. Try Sonatype Lift for free. Install Lift


Reach out to us at to provide feedback or ask a question.


Sonatype OSS Index is a free tool to help developers create more secure applications.

We encourage you to share your thoughts on how we can improve the usability of the site, the quality of information we provide, or just reach out to say hello.

You may wish to Report a Vulnerability that OSS Index is currently missing.

We appreciate your feedback!