OWASP Dependency-Track Alternatives

    OWASP Dependency-Track is described as 'Dependency-Track is an intelligent Software Supply Chain Component Analysis platform that allows organizations to identify and reduce risk from the use of third-party and open source components' and is an app in the Security & Privacy category. There are five alternatives to OWASP Dependency-Track for a variety of platforms, including Online / Web-based, Self-Hosted solutions, SaaS, GitHub Marketplace and Docker. The best alternative is WhiteSource Renovate, which is both free and Open Source. Other great apps like OWASP Dependency-Track are Black Duck Software (Paid), FOSSA (Freemium), WhiteSource (Paid) and WhiteSource Bolt (Free).

    This page was last updated Nov 3, 2020

    1. WhiteSource Renovate is a free dependency update solution that helps software developers through the following benefits: Saves time and effort by automatically resolving outdated dependencies and integrating these updates into the DevOps workflow Decreases the likelihood and...
      show more
    2. Organizations worldwide use Black Duck products to secure and manage open source software, eliminating pain related to open source security vulnerabilities and open source license compliance.

      • FreemiumProprietary
      • Online
      FOSSA offers automated license scanning, dependency analysis and reports at each commit. Get a process up an running in 60 seconds, without slowing down development.
      No screenshots yet
    3. WhiteSource is the leading solution for agile open source security and license compliance management. It integrates with your development environments and DevOps pipeline to detect open source libraries with security or compliance issues in real-time.
      show more
      • FreeProprietary
      • Online
      • Software as a Service (SaaS)
      • GitHub
      • Azure DevOps
      • Microsoft Visual Studio
      WhiteSource Bolt is a FREE tool that scans all of your projects to detect vulnerable open source components. It provides actionable remediation paths to enable a quick fix. Available on Github & Azure DevOps Marketplaces: bolt.whitesourcesoftware.com.
      show more
    Showing 5 of 5 alternatives