Community Integrations

The following tools and integrations have been built by the community on top of Dependency-Track's API-first design. They are maintained independently and are not officially supported by the Dependency-Track project.

Note

Dependency-Track's REST API provides full programmatic access to all platform features. This makes it straightforward to build custom integrations for tools and workflows not listed here.

CI/CD and Build System Plugins

These plugins automate SBOM upload and vulnerability gate evaluation as part of your build pipeline.

Tool	Integration	Link
Jenkins	Dependency-Track Jenkins Plugin	jenkins.io
GitHub	OWASP Dependency-Track Check GitHub Action	GitHub Marketplace
Azure DevOps	Azure DevOps Extension	Visual Studio Marketplace
Maven	dependency-track-maven-plugin	GitHub

Developer Portals

Tool	Integration	Link
Backstage	Dependency-Track Backstage Plugin (TRIMM)	GitHub

Client Libraries

These libraries provide programmatic access to the Dependency-Track API from your own tools and automation scripts.

Language	Library	Link
Go	Dependency-Track Client	GitHub
Python	Dependency-Track Client	GitHub
Ruby	Dependency-Track Client	GitHub

Security and Vulnerability Management

Tool	Integration	Link
SecObserve	Dependency-Track integration	GitHub
Mixeway Hub	Risk aggregation platform	mixeway.pl
SD Elements (Security Compass)	Dependency-Track integration	securitycompass.com

Reporting and Auditing

Tool	Description	Link
Dependency-Track Reporting Tool	Generates reports from Dependency-Track data (Modus Operandi)	GitHub
dtrack-audit	CLI tool for auditing findings (OZON.ru)	GitHub
dtrack-auditor	Policy-driven finding auditor	GitHub
dependency-track-exporter	Prometheus metrics exporter (Jetstack)	GitHub

Other Utilities

Tool	Description	Link
dtapac	Policy-as-code for Dependency-Track via OPA	GitHub
sbomify	SBOM enrichment and sharing	sbomify.com

---

Know of an integration that should be listed here? Open a pull request on the documentation repository.