Software Composition Analysis
Software Composition Analysis (SCA) tools for identifying security vulnerabilities in open source components, third-party libraries, and software dependencies.
Browse 163 software composition analysis tools
FEATURED
RELATED TASKS
SCA tool for identifying & remediating open-source vulnerabilities & risks
SCA tool for identifying & remediating open-source vulnerabilities & risks
Secures SDLC with malware detection, vuln scanning, SBOM gen & secret detection
Secures SDLC with malware detection, vuln scanning, SBOM gen & secret detection
SCA tool for detecting vulnerabilities & license risks in open-source deps
SCA tool for detecting vulnerabilities & license risks in open-source deps
Software supply chain security platform with SCA, package firewall & threat intel
Software supply chain security platform with SCA, package firewall & threat intel
SCA tool detecting vulnerabilities in third-party libraries at runtime & build
SCA tool detecting vulnerabilities in third-party libraries at runtime & build
Container & source code scanning for vulnerabilities, malware, and secrets
Container & source code scanning for vulnerabilities, malware, and secrets
SCA tool for code scanning, license identification, and SBOM generation
SCA tool for code scanning, license identification, and SBOM generation
SCA platform for managing open source vulnerabilities across SDLC
SCA platform for managing open source vulnerabilities across SDLC
SCA tool for identifying vulnerabilities in open-source dependencies
SCA tool for identifying vulnerabilities in open-source dependencies
Automated SCA tool for open source dependency management and vulnerability remediation
Automated SCA tool for open source dependency management and vulnerability remediation
Detects and prevents source code leakage and suspicious behavior.
Detects and prevents source code leakage and suspicious behavior.
Vulnerability detection dataset for declared & undeclared dependencies in code
Vulnerability detection dataset for declared & undeclared dependencies in code
Open source license compliance dataset for detecting code snippets & obligations
Open source license compliance dataset for detecting code snippets & obligations
Identifies geographic origin and authorship of open source code components
Identifies geographic origin and authorship of open source code components
Identifies cryptographic algorithms and libraries in code for compliance
Identifies cryptographic algorithms and libraries in code for compliance
Enterprise SCA tool for scanning & remediating vulnerable open source dependencies
Enterprise SCA tool for scanning & remediating vulnerable open source dependencies
OpenSCA Project is a dependency security scanner that runs in the browser.
OpenSCA Project is a dependency security scanner that runs in the browser.
SCA tool for vulnerability detection, malicious code identification & remediation
SCA tool for vulnerability detection, malicious code identification & remediation
Malware detection across SDLC, DevOps pipelines, and open-source components
Malware detection across SDLC, DevOps pipelines, and open-source components
Secures build processes with attestation, artifact verification, and SLSA support
Secures build processes with attestation, artifact verification, and SLSA support
Ossprey is a software supply chain security platform that uses AI-powered scanning to detect malicious open source code and prevent supply chain attacks through automated policy enforcement and dependency analysis.
Ossprey is a software supply chain security platform that uses AI-powered scanning to detect malicious open source code and prevent supply chain attacks through automated policy enforcement and dependency analysis.
JavaScript security scanner for detecting vulnerabilities in third-party scripts
JavaScript security scanner for detecting vulnerabilities in third-party scripts
Platform for vulnerability detection in firmware, binaries, and SBOMs
Platform for vulnerability detection in firmware, binaries, and SBOMs
AI-native AppSec platform with SAST, SCA, container & dependency mgmt.
AI-native AppSec platform with SAST, SCA, container & dependency mgmt.
Software Composition Analysis Tools - FAQ
Common questions about Software Composition Analysis tools including selection guides, pricing, and comparisons.
Software Composition Analysis (SCA) tools for identifying security vulnerabilities in open source components, third-party libraries, and software dependencies.
