Platform
Software Dependency Analysis
| Control open source, proprietary and third-party components used throughout your software supply chain | |
| Understand your dependencies structure | |
| Find all Suspect Dependencies across your SDLC | |
| Build SBOM to manage legal and security risks. |
Control open source, proprietary and third-party components used throughout your software supply chain
Discover all related components, their supporting libraries, and their direct and indirect dependencies, and quickly track and analyze any open-source or proprietary component brought into a project.
Understand your dependencies structure
Knowing the breakdown of your software in components, directly and indirectly referenced, helps to identify changes in the dependencies that might introduce malicious or vulnerable code.
Search for a particular component to know where it is used across your organization’s software, identify the direct dependencies that include it, and respond to risky dependencies with quick fixes, like creating a pull request with changes for version upgrade.
Find all Suspect Dependencies across your SDLC
Quickly detect and protect your software against attacks to the dependencies and package managers, like typosquatting, dependency confusion, or components with suspicious scripts, among others. Identify components with non-conformant metadata and tag them for review. Any reference to a component containing malicious code will be reported, with actionable response.
Build SBOM to manage legal and security risks
The Software Bill of Materials (SBOM) is a complete list of all software components used across an organization. It enables software-producing organizations to provide transparency by disclosing the composition of their applications and a comprehensive view of their security.
