About the Project:- Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain. Dependency-Track takes a unique and highly beneficial approach by leveraging the capabilities of Software Bill of Materials (SBOM). This approach provides capabilities that traditional Software Composition Analysis (SCA) solutions cannot achieve.
Some of the ways you can help are as follows:
- Try it out
- Have your development team try it out
- Submit feedback via Github issues
- Submit pull requests
References:-
https://owasp.org/www-project-dependency-track/
https://github.com/DependencyTrack
https://twitter.com/dependencytrack
#securecode #security