Java aktuell published an article I wrote on a topic at work for TRIOLOGY GmbH.
You can find an English version on the TRIOLOGY Blog: Automatic checks for vulnerabilities in Java project dependencies. The article shows an approach to keeping your Java project dependencies free of known vulnarabilities (e.g. CVEs) using the OWASP Dependency check with Jenkins and Maven. There also is an example project on GitHub.
The original article PDF (in German) is available for download here: Automatisierte Überprüfung von Sicherheitslücken in Abhängigkeiten von Java-Projekten.
TRIOLOGY also published a short Q&A on the article, which can be found here.
IT affinity! 