Sken for SCA Scans
Software Composition Analysis
Identify all open-source components in application tf
Dependency checking of integrated software
Ensure vulnerable versions are not used in apps
Check for license policies and organizational mandate
Verify apps live on secure infrastructure components
Help DevOps secure apps without slowing them down
SCA scan runs on every build
Flag OSS components used
Open Source Scanners included in Sken for SCA
SCA
OWASP Dependency Leaks