Introducing vetpkg.dev - Open Source Component Security Dashboard
Introducing vetpkg.dev - Built using SafeDep API to provide an easy to use visibility of open source component security information.
Tag: sca
Eliminating SCA Noise using Dependency Usage Evidence
SafeDep Code Analysis framework augments vet, our free and open source tool with code context.
What is Next Generation Software Composition Analysis?
Software Composition Analysis has been there for a while. But the problems associated with open source vulnerabilities persist. Next-gen SCA is the promised solution. What is it and how does it work?
Why Open Source Risks are Larger than SCA Tools
Open Source Software is critical. However it often comes with inherited risks that are larger than what can be tackled by conventional Software Composition Analysis (SCA) tools.
