Skip to content
@DependencyTrack

Dependency-Track

Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain
README.md

Welcome to the Dependency-Track Community

https://dependencytrack.org/

OWASP Dependency-Track is a continuous SBOM analysis platform that allows organizations to identify and reduce risk in the software supply chain. Dependency-Track is open-source and distributed under the Apache 2.0 license.

Pinned Loading

  1. dependency-track dependency-track Public

    Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.

    Java 3.5k 698

  2. frontend frontend Public

    Frontend UI for Dependency-Track

    Vue 147 207

  3. community community Public

    Community resources for OWASP Dependency-Track

    15

  4. helm-charts helm-charts Public

    Helm Charts for Dependency-Track

    Smarty 46 41

  5. client-go client-go Public

    Forked from nscuro/dtrack-client

    Go client library for OWASP Dependency-Track

    Go 28 31

Repositories

Showing 10 of 22 repositories
  • hyades Public

    Incubating project for decoupling responsibilities from Dependency-Track's monolithic API server into separate, scalable services.

    DependencyTrack/hyades’s past year of commit activity
    Java 92 Apache-2.0 37 87 (11 issues need help) 12 Updated Dec 24, 2025
  • hyades-e2e Public

    End-to-end tests for OWASP Dependency-Track

    DependencyTrack/hyades-e2e’s past year of commit activity
    TypeScript 0 Apache-2.0 1 0 7 Updated Dec 24, 2025
  • hyades-frontend Public

    Fork of the Dependency-Track frontend. It includes various changes necessary to work with Hyades.

    DependencyTrack/hyades-frontend’s past year of commit activity
    Vue 7 Apache-2.0 24 0 41 Updated Dec 23, 2025
  • hyades-apiserver Public

    Fork of the Dependency-Track API server. It includes various changes necessary to work with Hyades.

    DependencyTrack/hyades-apiserver’s past year of commit activity
    Java 18 Apache-2.0 31 0 16 Updated Dec 23, 2025
  • dependency-track Public

    Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.

    DependencyTrack/dependency-track’s past year of commit activity
    Java 3,486 Apache-2.0 698 944 (38 issues need help) 72 Updated Dec 23, 2025
  • frontend Public

    Frontend UI for Dependency-Track

    DependencyTrack/frontend’s past year of commit activity
    Vue 147 Apache-2.0 207 183 (5 issues need help) 88 Updated Dec 23, 2025
  • helm-charts Public

    Helm Charts for Dependency-Track

    DependencyTrack/helm-charts’s past year of commit activity
    Smarty 46 Apache-2.0 41 10 (1 issue needs help) 2 Updated Dec 22, 2025
  • client-go Public Forked from nscuro/dtrack-client

    Go client library for OWASP Dependency-Track

    DependencyTrack/client-go’s past year of commit activity
    Go 28 Apache-2.0 37 3 (1 issue needs help) 5 Updated Dec 21, 2025
  • vuln-db Public

    Proof of concept for OWASP Dependency-Track's own, centralized vulnerability database.

    DependencyTrack/vuln-db’s past year of commit activity
    Java 10 Apache-2.0 0 5 6 Updated Nov 10, 2025
  • jbang-catalog Public

    JBang catalog of OWASP Dependency-Track

    DependencyTrack/jbang-catalog’s past year of commit activity
    Java 0 Apache-2.0 0 0 0 Updated Nov 8, 2025
View all repositories