The dependency-check gradle plugin is a Software Composition Analysis (SCA) tool that allows projects to monitor dependent libraries for known, published vulnerabilities.
Why do you think that https://github.com/We5ter/Scanners-Box is a good alternative to dependency-check-gradle