VersionEye added National Vulnerability Database (NVD) as Security Data Source #8 for Open Source Components

To further improve fine granular VersionEye Security Alerts for reliable Open Source usage

has the VersionEye team integrated National Vulnerability Database (NVD)  as source #8  for potential security vulnerabilities which complements other data sources like i.e. VictimsDB which may not always include aproporiate warnings like for this examples:

NVD integration is based on mapping between Common Platform Enumeration (CPE) Dictionary and Maven which will be further improved using the OWASP framework and becoming available – like VersionEye itself –  under Open Source License.

VersionEye provides following automatic Services for Open Source & Enterprise Software Developers

1. Version Control
2.
License Control
3.
Security Alerts

VersionEye is used by more 160.000 monthly visitors ,  30.000 registered users and Enterprise customers like:

Blinkist,
Seeburger
and XING

More information on VersionEye