Automated Third Party Vulnerability Service (ATVS)

Automated Third Party Vulnerability Service (ATVS), also sometimes referred to as SCA, Software Composition Analysis, is a way of detecting and managing known third-party vulnerabilities in any open source components used. 

Open source components such as frameworks and libraries are commonly used in software, and these may have known vulnerabilities that require to be patched or updated. This service assists in prioritizing components to be updated. 

ATVS also assists in license compliance for these components, such as for the use of open source libraries.