dependency-check is a utility that identifies project dependencies and checks if there are any known, publicly disclosed vulnerabilities. This tool can be part of the solution to the OWASP Top 10 2013: A9 - Using Components with Known Vulnerabilities.
Homepage POM file JAR file Javadoc'org.owasp:dependency-check-parent:1.2.4'