Dependency intelligence
for modern Java.
Browse 800k+ Maven Central artifacts. Detect CVEs with real CVSS scores. Visualize dependency trees. Get security-aware version recommendations.
How it works
Three steps to safer Java dependencies.
Search or Upload
Find any Maven artifact by name or paste your pom.xml for instant analysis.
Analyze
See the full dependency tree, detect version conflicts, and scan for known CVEs.
Ship Safely
Get security-aware version recommendations and embeddable badges for your project.
Everything in one place
Built for Java developers who care about what they ship.
Smart Artifact Search
Search 800k+ Maven Central artifacts with full-text and GAV matching. Instant results as you type.
Security Intelligence
Real-time CVE scanning with CVSS v3.1 severity scores. Track how vulnerability counts change over time.
Dependency Trees
Visualize transitive dependencies with conflict detection and resolution paths in an interactive graph.
Smart Recommendations
Version recommendations that skip CVE-affected releases and prefer stable major lines.
Artifact Comparison
Compare versions or different libraries side-by-side. Analyze dependency diffs and security posture changes.
Historical Trends
Track vulnerability count history for any artifact over time with severity breakdowns.
Command Palette
Press ⌘K to instantly navigate anywhere, search artifacts, or switch between comparison modes.
Embeddable Badges
Dynamic SVG version and security badges for your README. Supports Markdown, HTML, and RST.
Deep comparison mode
Instantly see what changed between versions or compare different libraries. Analyze dependency diffs, security posture changes, and version release timelines in one view.
Popular Groups
Trending Libraries
View allWhat's New
Frequently asked questions
What is Modern Maven?
Modern Maven (modernmvn.com) is a free dependency-intelligence browser for Maven Central. It indexes more than 800,000 Java artifacts and, for each one, resolves the full transitive dependency tree, scans every version for known CVEs using OSV.dev and NVD CVSS v3.1 data, and surfaces security-aware version recommendations. You can look up the latest version of any groupId:artifactId, copy ready-to-paste Maven, Gradle, and SBT snippets, compare two artifacts or versions side by side, and embed dynamic version and security badges in your README. It is built for Java developers who want to know exactly what they are shipping before they ship it.
How do I check a Java dependency for CVEs?
Open the artifact page at modernmvn.com/artifact/{groupId}/{artifactId} (or a specific version at /{version}). Modern Maven cross-references the version against OSV.dev and the NVD, and lists every matching advisory with its CVSS v3.1 severity, CVE/GHSA identifier, affected and fixed version ranges, and a link to the upstream record. A per-version safety indicator (SAFE, CAUTION, WARNING, or DANGER) summarizes the result at a glance, and a historical chart shows how the vulnerability count for that artifact has changed over time. You can also paste a full pom.xml into the Analyze tool to scan the entire transitive dependency tree at once.
How do I find the latest version of a Maven artifact?
Search for the library on modernmvn.com or go directly to modernmvn.com/artifact/{groupId}/{artifactId}. The page shows the latest release version and the latest overall version (including pre-releases), along with the full version history and publish dates pulled from Maven Central. Each version links to ready-to-copy Maven, Gradle (Groovy and Kotlin), and SBT coordinates. Where a newer release exists that avoids known CVEs, Modern Maven highlights it as the recommended version, so you can upgrade to the safest stable line rather than just the newest tag.