License Compliance

DeepSource SCA

SCA platform with reachability analysis, AI-powered fixes, and license compliance

Aikido License Risk

Scans open-source licenses in dependencies and generates SBOMs for compliance

Checkmarx One Software Composition Analysis (SCA)

SCA tool for identifying & remediating open-source vulnerabilities & risks

MatosSphere Software Composition Analysis

SCA tool for detecting vulnerabilities & license risks in open-source deps

Contrast Software Composition Analysis (SCA)

SCA tool detecting vulnerabilities in third-party libraries at runtime & build

Anchore Enforce

Policy enforcement & compliance mgmt for container security across SDLC

Black Duck Code Sight IDE Plug-in

IDE plugin for SAST and SCA scanning with real-time vulnerability detection

FossID Software Composition Analysis

SCA tool for code scanning, license identification, and SBOM generation

Datadog Software Composition Analysis

SCA tool for identifying vulnerabilities in open-source dependencies

SCANOSS Licence Dataset

Open source license compliance dataset for detecting code snippets & obligations

SCANOSS Geo Provenance Dataset

Identifies geographic origin and authorship of open source code components

Cycode Enterprise Software Composition Analysis

Enterprise SCA tool for scanning & remediating vulnerable open source dependencies

Xygeni SCA

SCA tool for vulnerability detection, malicious code identification & remediation

Opscompass Cloud & Database Asset Intelligence

Cloud & database asset intelligence platform for visibility & compliance

Axence nVision 17

IT infrastructure management & network security monitoring platform

Flyingduck Code Security Intelligence

SAST tool that detects logical flaws and business logic vulnerabilities