Integrations

Integrate open source vulnerability information across your development toolchain with pre-built tools and applications.

Audit.js

Audits an NPM project

Audit.NET

Audit.NET is a Visual Studio extension that highlights NuGet package dependencies with security vulnerabilities

The Central Repository

Serving Open Source Components Since 2002

Dependency Check

OWASP Dependency-Check is a utility that identifies project dependencies and checks if there are any known, publicly disclosed, vulnerabilities.

Sonatype DepShield

Sonatype DepShield is a GitHub App used by developers to identify and remediate vulnerabilities in their open source dependencies.

DevAudit

Open-source, cross-platform, multi-purpose security auditing tool

Gradle

Dependency audit plugin for Gradle

Maven

Dependency audit plugin for Maven

Maven Enforcer

Use Maven-Enforcer plugin to ban vulnerable dependencies from inclusion project builds.