Application Dependency Management Overview

Application Dependency Management (ADM) detects security vulnerabilities in application dependencies.

Application Dependency Management (ADM) is a reporting and management service integrated with Oracle Cloud Infrastructure services to detect and remediate security vulnerabilities in the applications' dependencies. It relies on vulnerabilities reported by community sources including the National Vulnerability Database (NVD).

As a customer you can:

  • Detect security vulnerabilities in common programming languages.
  • Remediate the application's vulnerabilities by updating its dependencies to the most recent or a non vulnerable version.

Application Dependency Management helps developers, operations, devops, and support teams answer questions such as:

  • What dependencies does the application have?
  • Which of those dependencies contains a security vulnerability?

Application Dependency Management requires no changes to the current development and deployment tools. It supports the following source code management tools:

  • OCI Devops Repositories
  • GitHub
  • GitLab

Application Dependency Management supports the following build tools:

  • OCI DevOps Build Pipelines
  • GitHub Actions
  • GitLab Pipelines
  • Jenkins Pipelines