Dependency-Track

java-runtime server-app

OWASP Dependency-Track is an intelligent API-first Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain. It monitors component usage across all versions of every application in order to proactively identify risk across an organization.

Release Security Support Latest
4.11 Yes 4.11.1
(19 May 2024)
4.10 Ended 2 weeks and 2 days ago
(07 May 2024)
4.10.1
(19 Dec 2023)
4.9 Ended 5 months and 2 weeks ago
(08 Dec 2023)
4.9.1
(30 Oct 2023)
4.8 Ended 7 months ago
(16 Oct 2023)
4.8.2
(16 May 2023)
4.7 Ended 1 year ago
(18 Apr 2023)
4.7.1
(31 Jan 2023)

Dependency-Track does not have a fixed release cycle, and only the latest version is supported.

You should be running one of the supported release numbers listed above in the rightmost column.


You can submit an improvement to this page on GitHub :octocat: . This page has a corresponding Talk Page.

A JSON version of this page is available at /api/dependency-track.json. See the API Documentation for more information. You can subscribe to the iCalendar feed at /calendar/dependency-track.ics.