Dependa User Manual

v2.0 — Last updated: April 1, 2026

Table of Contents

1. Getting Started
   Installation, first launch, and screen overview
2. SBOM Import & Folder Scan
   Auto-detect CycloneDX / SPDX import, folder scan for dependency detection
3. Vulnerability & Risk Analysis
   CVSS scoring, RiskReason, RecommendedAction, Evidence, and Confidence
4. License Analysis
   Automatically classify license risks (High Risk / Risk / Known-Normal) with online enrichment
5. Reports & SBOM
   Executive Summary, Action Required, Risk Analysis, AI section, review statistics
6. Policy Settings & Judgments
   Organization policy-based review (Allowed / NeedApproval / Prohibited)
7. Delta Scan
   Detect changes from previous scan for continuous review (Pro)
8. Exception Management
   Approve and track vulnerability/license exceptions (Pro)
9. AI Governance Analysis
   AI BOM, Excessive Agency, Data Sovereignty, ExternalServiceUsage, Organization Policy
10. IaC Support
    Detect AI resources from Terraform / Bicep / ARM JSON
11. Settings
    Language, online enrichment, and license management
12. Pro Features Guide
    Unlimited review, approval workflow, full reports, SBOM diff, online enrichment, multiple projects
13. CLI Reference
    Command-line usage and automation scripts
14. Licensing & Purchase
    Free vs Pro plan comparison and how to purchase
15. Troubleshooting
    Error message reference, SBOM format issues, and settings reset