What is FOSSA?
Continuously scan and comply with open source licenses across your deep dependencies.
FOSSA is a tool in the Dependency Monitoring category of a tech stack.
FOSSA is an open source tool with 668 GitHub stars and 57 GitHub forks. Here’s a link to FOSSA's open source repository on GitHub
Who uses FOSSA?
No developer stacks found
Slack, npm, Jira, Travis CI, and CircleCI are some of the popular tools that integrate with FOSSA. Here's a list of all 5 tools that integrate with FOSSA.
Why developers like FOSSA?
Here’s a list of reasons why companies and developers use FOSSA
Be the first to leave a pro
FOSSA Alternatives & Comparisons
What are some alternatives to FOSSA?
See all alternatives
Fix vulnerabilities in Node & npm dependencies with a click.
Dependabot helps you keep your dependencies up to date. Every day, it checks your dependency files for outdated requirements and opens individual PRs for any it finds. You review, merge, and get to work on the latest, most secure releases.
Real-time monitoring for npm dependencies. Let a bot send you informative and actionable issues so you can easily keep your software up to date and in working condition.
Automatic compliance testing for all of the dependencies in your application.
Gemnasium keeps track of projects dependencies. Ruby, Node.js, PHP composer, Bower and Python projects dependencies are automatically parsed, and notifications sent when new versions are released or security advisories are published.