Skip to content
cask.news
← Home

FOSSA

fossa · v3.17.12

3
7.0

Zero-configuration polyglot dependency analysis tool

brew install --cask fossa
60
30-day installs
171
90-day installs
630
365-day installs
Install trend
Trust Score 3/10
Open source (NOASSERTION) +0
Active development +0
Licensed +1
No auto-updates +0
Not deprecated +1
Established (>1yr) +1
Low installs +0

Version History

v3.17.12
2d ago3.17.113.17.12
17d ago3.17.103.17.11
1mo ago3.17.83.17.10
1mo ago3.17.73.17.8
1mo ago3.17.63.17.7
1mo ago3.17.53.17.6
1mo ago3.17.43.17.5
1mo ago3.17.33.17.4
2mo ago3.17.23.17.3
2mo ago3.16.63.17.2

+ 4 older versions

Review

Mar 10, 2026

FOSSA is a powerful dependency analysis tool that supports multiple languages and build systems. It helps developers track licenses, identify vulnerabilities, and manage dependencies efficiently.

FOSSA analyzes project dependencies, identifies vulnerabilities, and tracks open-source licenses.

Maturity: The project is mature with active development and regular updates.

Community: Hacker News mentions indicate interest in FOSSA's capabilities for dependency management and code review, though some discussions are older.

Pros

  • + Zero-configuration setup simplifies integration into development workflows.
  • + Supports over 20 build systems, making it versatile for various projects.
  • + Integrates seamlessly with CI/CD pipelines for automated dependency checks.

Cons

  • - Lacks auto-update functionality, requiring manual checks for updates.
  • - Written in Haskell, which might be less familiar to some developers.
1.5k
Stars
194
Forks
83
Issues
NOASSERTION
License
HaskellLast commit: Mar 10, 2026