DependencyTrack
Dependency-Track is an open-source Software Bill of Materials (SBOM) management platform. It provides a centralized system for tracking and analyzing the dependencies of software projects. The platform automates the process of ingesting SBOMs, identifying vulnerabilities, and assessing the risk associated with these dependencies.
Its core functionality includes importing SBOMs in various formats, such as CycloneDX and SPDX. Once imported,
Key features of Dependency-Track include the ability to create projects, upload SBOMs, and view detailed vulnerability
Dependency-Track aims to improve software supply chain security by providing transparency into the components used in