GitHub Enterprise Server helps you secure your supply chain, from understanding the dependencies in your environment, to knowing about vulnerabilities in those dependencies.
You can use the dependency graph to identify all your project's dependencies. The dependency graph supports a range of popular package ecosystems.
You can allow users to identify their projects' dependencies by enabling the dependency graph.
Dependency review lets you catch insecure dependencies before you introduce them to your environment, and provides information on license, dependents, and age of dependencies.
You can use dependency review to catch vulnerabilities before they are added to your project.