Fork me on GitHub


OWASP dependency-check-cli is an command line tool that uses dependency-check-core to detect publicly disclosed vulnerabilities associated with the scanned project dependencies. The tool will generate a report listing the dependency, any identified Common Platform Enumeration (CPE) identifiers, and the associated Common Vulnerability and Exposure (CVE) entries.

Installation & Usage

Download the dependency-check command line tool here. Extract the zip file to a location on your computer and put the ‘bin’ directory into the path environment variable.


$ brew install dependency-check

This puts an executable dependency-check script in the /bin directory of your homebrew installation.

To scan a folder on the system you can run:


dependency-check.bat --project "My App Name" --scan "c:\java\application\lib"

*nix --project "My App Name" --scan "/java/application/lib"

To view the command line arguments, see the arguments page, or you can run:


dependency-check.bat --help

*nix --help