← Back to Discover
dependency-check

dependency-check/DependencyCheck

JavaApache-2.0activepopular
89Health

OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.

Stars7.6k
Forks1.4k
Open Issues211
Contributors1.4k
Last Push1d ago

Health Breakdown

Activity
25
Community
25
Maintenance
15
Popularity
25
#ant-task#build-tool#gradle-plugin#jenkins-plugin#maven-plugin#security#security-audit#software-composition-analysis#vulnerability-detection
View on GitHub ↗Issues (211) ↗Pull Requests ↗Wiki ↗

Should you contribute to dependency-check/DependencyCheck?

dependency-check/DependencyCheck has a FoundDev health score of 89/100, which puts it in the active-and-maintained tier. The maintainer team is shipping recently, issues are being closed, and a PR you open this week has a realistic chance of being reviewed.

Last push was 1 days ago — that signals an actively maintained project. New issues are likely to get a maintainer response within days. The project is written primarily in Java, so prior Java experience will shorten ramp-up.

Licensed under Apache-2.0, a standard OSI-approved license — safe to contribute to under normal employer IP policies.

Community

dependency-check89

OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.

activepopular
7.6k1.4k contributors211 issues
1d ago

More Java repos

apache
apache/fineract
Apache Fineract
2.3k99
mybatis
mybatis/spring
Spring integration for MyBatis 3
2.9k98
apache
apache/camel
Apache Camel is an open source integration framework with 350+ connectors. Write routes in Java, YAML, or XML. Run on Spring Boot, Quarkus, or standalone. Apache License 2.0.
6.3k97