Application Health Check

Instantly generate a software bill of materials. Identify potential open source risk in your applications.
Free service: Download, analyze and have answers in minutes.

  • Confidentially and quickly analyze your java open source components.
  • Create a "bill of materials" inventory of precisely which components are used and where.
  • Identify known cyber vulnerabilities that may impact software security.
  • Discover potential component quality and license concerns, such as restrictive GPL licenses.
  • Analyze both internal and third party applications.
  • Ideal for Cyber Supply Chain Act initiatives, or regulatory or compliance mandates.

Have questions before you start? Check out our FAQ or learn how our open source risk assessment tool works in a short video tour.

Trusted by more than 3500+ developers and security experts, the Application Health Check is offered by Sonatype as a free community service to raise visibility into your potential open source risk. Sonatype's Nexus Lifecycle Product (formerly Component Lifecycle Management) provides a complete open source risk management solution that eliminates known vulnerable components throughout the entire software lifecycle.