Existing tools/architectures for org-wide dependency visibility across repos?

Market insights

Stack

Apply

Upload your CV — we will connect you with the employer directly through our pool.

Description

Existing tools/architectures for org-wide dependency visibility across repos? Hi all, I’m looking into existing solutions for centralized dependency visibility across an organization’s repositories. My org uses Azure Devops. Main requirement: ability to search/query which repos/apps use a particular dependency (and ideally version as well) support for multiple ecosystems (tech stacks involved are mainly [link] and Python) Example: “Which repos/apps use lodash 4.17.20?” So user interaction is still: ​ dependency name + version (optional) -> return affected apps/repos Bonus: vulnerability visibility/CVE detection lightweight app metadata/environment visibility Currently am looking at tools like Backstage, Dependency-Track, OWASP Dependency-Check, Azure DevOps Advanced Security, SBOM-based workflows, etc. Would appreciate advice on: existing platforms/tools that fit this use case well whether people typically solve this using SBOM aggregation whether Backstage is overkill for this type of dependency-centric visibility use case common architectures/patterns people use in practice Thanks in advance! [link] [handle]

Employer contacts (email/phone/telegram) are hidden from the public preview — send your CV, and we will connect you directly.