This project is a Software Composition Analysis (SCA) tool written in Java, designed to identify and report security vulnerabilities in project dependencies. It uses Common Platform Enumeration (CPE) identifiers to recognize known vulnerabilities in project dependency libraries, thereby generating detailed security reports and linking to relevant CVE entries. The tool supports the analysis of dependencies for a variety of programming languages and frameworks and can be seamlessly integrated into existing build processes.