Components
The Inventory's Components displays information about components (3rd party dependencies) of your project(s).
You can reach the Inventory's Components page either by selecting Components in the Navigation Bar or selecting the Components tab of the Inventory page.
The Inventory's Components page displays the following information:
Total number of components (and average per project)
Total number of Direct dependencies (i.e. those explicitly declared in your package manager's manifest files)
Number of components with some security risk
Charts about distribution of components by repository, ecosystem and language
A table with a full listing of all the components (as well as filter fields)
An important filter field is Dependency Type (direct or indirect). This filter allows you to see those dependencies explicitly declared and those that are transitive.
Another important filter field is Alert Type. This filter allows you to see those dependencies with License warnings, dependencies tagged as with Malware code, or Obsolete dependencies. See Component's Alert Type for a full description.
Ecosystem (npm, maven, etc)
Provenance (the parent component in case of a transitive dependency)
Data about the Publisher of the component
Latest available version and publication date
License detected and type
The Issues tab shows information about vulnerabilities of the component.
Last updated