Debricked
Software composition analysis tools
DevSecOps software
- Features
- Ease of use
- Ease of management
- Quality of support
- Affordability
- Market presence
Take the quiz to check if Debricked and its alternatives fit your requirements.
$25 per contributing developer per month
Free TrialFree version
Small
Medium
Large
- Information technology and software
- Arts, entertainment, and recreation
- Media and communications
What is Debricked
Debricked is a software composition analysis (SCA) and open source security platform that helps teams identify and manage vulnerabilities and license risks in third-party dependencies. It is used by development, security, and compliance teams to scan repositories and CI/CD pipelines and to prioritize remediation work. The product focuses on dependency inventory (SBOM-related use cases), vulnerability intelligence, and policy enforcement for open source usage across projects.
Broad open-source risk coverage
Debricked addresses both vulnerability management and open-source license compliance for dependencies. This supports security and legal/compliance workflows from a single dependency inventory. It fits teams that need to standardize open-source governance across multiple repositories and services.
CI/CD and SCM integrations
The product is designed to integrate with common source control and CI/CD workflows so scans can run automatically on pull requests and builds. This helps teams catch dependency issues earlier than periodic audits. It also supports centralized reporting across multiple projects for security and engineering stakeholders.
Prioritization and policy workflows
Debricked provides mechanisms to triage findings and apply policies (for example, blocking builds or flagging prohibited licenses). This supports DevSecOps practices where security requirements are enforced as code and through pipeline gates. It can reduce manual review effort by focusing attention on actionable dependency issues.
Limited beyond dependency security
Debricked primarily focuses on open-source dependency risk rather than full application security coverage. Teams typically still need separate tools for areas like cloud posture, runtime protection, or broader code quality and static analysis. This can increase overall toolchain complexity for organizations seeking a single consolidated platform.
Remediation depends on workflows
Like other SCA tools, the value depends on how well teams operationalize remediation (ownership, SLAs, and upgrade processes). Findings can accumulate if engineering teams lack time or clear prioritization rules. Organizations may need additional process work to avoid alert fatigue.
Vendor details not fully verifiable
Publicly verifiable corporate details (such as definitive HQ location and founding year) are not consistently available from authoritative sources in this context. Buyers may need to confirm legal entity information, data residency options, and support coverage during procurement. This is especially relevant for regulated industries that require documented vendor attestations.
Plan & Pricing
SCA Tool (Debricked / OpenText Core SCA)
| Plan | Price | Key features & notes |
|---|---|---|
| Free | $0 — Free forever | Vulnerability Management, License Management, Project Health. 1000 scans first month; 100 scans added monthly; no credit card required. |
| Premium | $25 per contributing developer / month (stated) — $275 billed annually (stated) | Adds Vulnerability report, License report, API access (rate limit: 5000 requests/hour/contributing developer), Chat and email support, Unlimited scans. |
| Enterprise | Starting from $30 per contributing developer / month — $360 billed annually (stated) | Same as Premium plus enterprise-level support, SBOM export, Enterprise SSO, increased computation, unlimited API access. Request demo / contact sales. |
Select (Open Source Select)
| Plan | Price | Key features & notes |
|---|---|---|
| Select Free | $0 — Free forever | Unlimited access to database of 40+ million open source projects; filter and compare projects. |
| Select Enterprise | $96 per contributing developer / year (billed annually) | Same as Select Free plus Start-Left policies, Unlimited API access. Request demo / contact sales. |
