Description:
Zero-configuration polyglot dependency analysis tool
|
|
Type: Cask
|
Latest Version: 3.15.7@0
|
Tracked Since: Dec 17, 2025
|
|
Links:
Homepage |
@fossa |
formulae.brew.sh
|
|
Category: Developer tools
|
|
Tags:
dependency-management
security
license-compliance
devops
sbom
sca
|
|
Install:
brew install --cask fossa
|
About:
Fossa is a command-line interface tool that automates software composition analysis for modern development workflows. It scans codebases to identify all dependencies across multiple package managers and languages, then checks them against vulnerability databases and license compliance databases. The tool integrates with CI/CD pipelines to provide automated reporting and policy enforcement, helping teams manage security risks and legal compliance without complex configuration.
|
Key Features:
- Multi-language dependency scanning (supports 20+ package managers)
- Automated license compliance detection and reporting
- Vulnerability scanning with continuous monitoring
- CI/CD integration for policy enforcement
- No-configuration setup with automatic project detection
|
Use Cases:
- Continuous security monitoring in CI/CD pipelines
- Open source license compliance auditing for legal teams
- Dependency inventory and risk assessment for engineering managers
- SBOM (Software Bill of Materials) generation for regulatory requirements
|
Alternatives:
-
Snyk
– Snyk focuses more on security vulnerabilities, while FOSSA provides stronger license compliance and broader dependency management
-
Dependabot
– Dependabot is GitHub-native and focuses on dependency updates, while FOSSA offers enterprise-grade compliance and multi-language support
-
Sonatype
– Sonatype is enterprise-focused with higher complexity, while FOSSA offers easier setup and developer-friendly workflows
|
| Detected |
Version |
Rev |
Change |
Commit |
| Feb 12, 2026 10:06pm |
3.15.7 |
0 |
VERSION_BUMP |
8af043a3 |
| Feb 12, 2026 1:15am |
3.15.6 |
0 |
VERSION_BUMP |
3407bf25 |
| Jan 29, 2026 7:02am |
3.15.5 |
0 |
VERSION_BUMP |
2c11eb95 |
| Jan 16, 2026 7:20pm |
3.15.4 |
0 |
VERSION_BUMP |
fb4fac6d |
| Jan 12, 2026 9:56pm |
3.15.3 |
0 |
VERSION_BUMP |
1332cfd0 |
| Jan 7, 2026 7:04pm |
3.15.2 |
0 |
VERSION_BUMP |
4500eb45 |
| Sep 17, 2025 1:18am |
3.11.10 |
0 |
VERSION_BUMP |
6e7b8d55 |
| Sep 11, 2025 9:58pm |
3.11.9 |
0 |
VERSION_BUMP |
ece1fc41 |
| Sep 10, 2025 2:42am |
3.11.8 |
0 |
VERSION_BUMP |
f23fcbef |
| Aug 30, 2025 1:05am |
3.11.7 |
0 |
VERSION_BUMP |
341c3b93 |
| Aug 27, 2025 9:57pm |
3.11.6 |
0 |
VERSION_BUMP |
31fb2fec |
| Aug 23, 2025 1:12am |
3.11.5 |
0 |
VERSION_BUMP |
728d021a |
| Aug 19, 2025 9:58pm |
3.11.3 |
0 |
VERSION_BUMP |
34c82c51 |
| Aug 15, 2025 9:54pm |
3.11.2 |
0 |
VERSION_BUMP |
aea8c979 |
| Aug 14, 2025 4:16am |
3.11.1 |
0 |
VERSION_BUMP |
1effa1ea |
| Aug 11, 2025 7:03pm |
3.11.0 |
0 |
VERSION_BUMP |
debdd7d3 |
| Aug 7, 2024 6:50pm |
3.9.30 |
0 |
VERSION_BUMP |
2b8de2b8 |
| Aug 6, 2024 9:36pm |
3.9.29 |
0 |
VERSION_BUMP |
ddf63578 |
| Jul 11, 2024 9:38pm |
3.9.25 |
0 |
VERSION_BUMP |
e96c8f9c |
|