Dependency Track - Steve Springett


Dependency-Track is an intelligent Software Composition Analysis (SCA) platform that allows organizations to identify and reduce risk from the use of third-party and open source components. The platform integrates with multiple sources of vulnerability intelligence including the National Vulnerability Database (NVD), NPM Public Advisories, Sonatype OSS Index, and VulnDB from Risk Based Security.

In this session you'll learn about Dependency-Track, it's bill-of-material approach to providing continuous component analysis, and many of the automation options that are available with the platform.


Managed by the official OWASP Media Project

Dependency Track - Steve Springett Dependency Track - Steve Springett Reviewed by Anonymous on October 31, 2018 Rating: 5