Pomeranian

The Silver Bullet for Java Optimization

Automate cleanup, enforce security, and minimize binary size with a single Maven or Gradle plugin. Secure your supply chain in minutes.

Start Free TrialView Documentation
$mvn pom:optimize

[INFO] Scanning dependencies...

[INFO] Found 47 unused dependencies

[WARN] 3 vulnerabilities detected

[INFO] Running verification sandbox...

[SUCCESS] Build optimized!

→ Binary size: 200MB45MB

→ Dependencies: 12780

→ Vulnerabilities: 30

Why Teams Choose Pomeranian

Powerful capabilities for Maven and Gradle. Zero configuration required.

Dependency Debloating
Automatically detect and remove unused dependencies. Static bytecode analysis identifies what your Maven and Gradle builds actually use.
Binary Minimization
ProGuard-powered tree shaking with framework-aware profiles. Works with Spring, Kotlin, Jackson, Android, and more—shrink your JAR by up to 70%.
Security Scanning
OWASP Dependency-Check integration scans for CVEs and auto-patches vulnerabilities. Know and fix security issues before they become incidents.
Runtime-Verified Security
Prioritize vulnerabilities based on actual runtime monitoring. Know which CVEs affect code you actually use vs. dead dependencies.
Golden SBOM
Generate compliance-ready CycloneDX SBOMs reflecting your optimized, minimal dependency footprint. Perfect for audits and compliance.
Policy as Code
Enforce banned dependencies and security thresholds with .pomeranian.yaml. Fail builds that violate your organization's standards.
Private Repo Intelligence
Anonymized metadata exchange so the Brain understands your private artifacts without ever seeing your code.
IDE Integration
VS Code and IntelliJ IDEA configurations with CLI wrapper. Analyze and optimize directly from your favorite editor.

How It Works

Simple integration, no code changes required.

Plugin Runs Locally

Add the Maven or Gradle plugin. It analyzes your dependency tree locally.

Cloud Analysis

Only your pom.xml or build.gradle is sent to our cloud for optimization.

Local Verification

Changes are verified on YOUR machine before being finalized. Full access to private repositories.

Secure Build

Your optimized, secure build runs locally. Source code never leaves.

Your Source Code Never Leaves Your Machine

Only pom.xml metadata is sent for analysis. Your proprietary code stays local. Enterprise-grade security for teams of all sizes.

Ready to Optimize Your Builds?

Start with our free tier. No commitment required. Scale as you grow.

Start Free TrialView Pricing

100 free optimization runs per month. Credit card required for verification.