Dependency-Check

dependency-check is a utility that identifies project dependencies and checks if there are any known, publicly disclosed vulnerabilities. This tool can be part of the solution to the OWASP Top 10 2013: A9 - Using Components with Known Vulnerabilities.

Homepage POM file JAR file Javadoc

'org.owasp:dependency-check-parent:1.3.2'

<dependency>
	<groupId>org.owasp</groupId>
	<artifactId>dependency-check-parent</artifactId>
	<version>1.3.2</version>
</dependency>

<dependency org="org.owasp" name="dependency-check-parent" rev="1.3.2"/>

"org.owasp", "dependency-check-parent", "1.3.2"

Dependencies

Provided dependencies

com.google.code.findbugs » annotations » 3.0.1u2

Test dependencies

junit » junit » 4.12
org.hamcrest » hamcrest-core » 1.3