diff --git a/.github/workflows/CI.yml b/.github/workflows/CI.yml
index e7e4818..415a020 100644
--- a/.github/workflows/CI.yml
+++ b/.github/workflows/CI.yml
@@ -27,6 +27,26 @@ jobs:
         cache: maven
     - name: Build with Maven
       run: mvn -B clean install
+  dependency-check:
+    runs-on: ubuntu-latest
+    steps:
+    - uses: actions/checkout@v3
+    - name: Set up JDK 17
+      uses: actions/setup-java@v5
+      with:
+        java-version: '17'
+        distribution: 'temurin'
+        cache: maven
+    - name: OWASP Dependency Check
+      continue-on-error: true
+      run: mvn -B verify -Powasp -DskipTests -DnvdApiKey=${{ secrets.NVD_API_KEY }} -DconnectionTimeout=6000 -DreadTimeout=6000
+    - name: Upload report
+      if: always()
+      uses: actions/upload-artifact@v4
+      with:
+        name: dependency-check-report
+        path: target/dependency-check-report.html
+
   ## Only on push event, publish on geosolutions maven repo
   publish:
     runs-on: ubuntu-latest