Analyzed
1 day
ago.
based on code collected
1 day
ago.
Project Summary
Dependency-Check is a utility that detects publicly disclosed vulnerabilities in project dependencies.
In a Nutshell, DependencyCheck...
- ...
- ...
-
...
has a well established, mature codebase
maintained by a very large development team
with decreasing Y-O-Y commits -
...
took an estimated 40 years of effort (COCOMO model)
starting with its first commit in September, 2012
ending with its most recent commit 2 days ago
Quick Reference
Organization:
https://github.com/jeremylong/De...
Apache License 2.0
Permitted
Commercial Use
Modify
Distribute
Place Warranty
Sub-License
Private Use
Use Patent Claims
Forbidden
Hold Liable
Use Trademarks
Required
Include Copyright
State Changes
Include License
Include Notice
These details are provided for information only. No information here is legal advice and should not be used as such.
Project Security
Vulnerabilities per Version ( last 10 releases )
Project Vulnerability Report
Security Confidence Index
Poor security track-record
Favorable security track-record
Vulnerability Exposure Index
Many reported vulnerabilities
Few reported vulnerabilities
Did You Know...
-
...
55% of companies leverage OSS for production infrastructure
-
...
anyone with an Open Hub account can update a project's tags
-
...
65% of companies leverage OSS to speed application development in 2016
-
...
compare projects before you chose one to use
30 Day SummaryApr 30 2024 — May 30 2024
|
12 Month SummaryMay 30 2023 — May 30 2024
|
Static Analysis ( Generated by Coverity Scan for jeremylong/DependencyCheck )
Repository URL: https://github.com/jeremylong/DependencyCheck
Version: main
- 2024-05-25
- Last Analyzed
- 49,646
- Lines of Code Analyze
- 3.45
- Defect Density
Defects by status for current build
- 368
- Total defects
- 125
- Outstanding
- 240
- Fixed
CWE Top 25 defects
| ID | CWE-Name | Number of Defects |
|---|---|---|
| 327 | Use of a Broken or Risky Cryptographic Algorithm | 5 |