Audit.NET is a Visual Studio extension that highlights NuGet package dependencies with security vulnerabilities
Serving Open Source Components Since 2002
OWASP Dependency-Check is a utility that identifies project dependencies and checks if there are any known, publicly disclosed, vulnerabilities.
Sonatype DepShield is a GitHub App used by developers to identify and remediate vulnerabilities in their open source dependencies.
Open-source, cross-platform, multi-purpose security auditing tool
Dependency audit plugin for Gradle
Dependency audit plugin for Maven
Use Maven-Enforcer plugin to ban vulnerable dependencies from inclusion project builds.