TrustRadius: an HG Insights company

Black Duck Software Composition Analysis (SCA)

Score10 out of 10

13 Reviews and Ratings

Get a Demo

What is Black Duck Software Composition Analysis (SCA)?

Black Duck® by Synopsys software composition analysis (SCA) helps teams manage the security, quality, and license compliance risks that come from the use of open source and third-party code in applications and containers.

Black Duck gives users visibility into third-party code, enabling them to control it across the software supply chain and throughout the application life cycle.

Categories & Use Cases

Videos

Screenshots

Screenshot of Black Duck helps you find and fix your highest-priority vulnerabilities
Screenshot of Use Black Duck to comply with open source license obligations and to verify compliance with all open source license terms
Screenshot of Black Duck automatically creates tickets in your activity tracking applications like Jira for both policy violations and vulnerabilities
Screenshot of Black Duck's vulnerability ImpactAnalysis indicates whether a vulnerability is actually being called by your application
Screenshot of The Black Duck security advisory gives the information you need to address security risks and make the fix
Screenshot of Black Duck generates a Bill of Materials which gives you a complete and detailed inventory of all open source identified in your codebase
Screenshot of Configure and customize to your company's specific security and license policies
Screenshot of Black Duck integrates with other tools to find and scan your codebase

1 / 8

Screenshot of Black Duck helps you find and fix your highest-priority vulnerabilities

Technical Details

Technical Details
Deployment TypesOn-Premise, SaaS
Operating SystemsWindows, Linux, Mac
Mobile ApplicationNo

FAQs

What is Black Duck Software Composition Analysis (SCA)?
Black Duck is a software composition analysis tool acquired and now supported by Synopsys since 2017.
What are Black Duck Software Composition Analysis (SCA)'s top competitors?
Checkmarx, Veracode, and Snyk are common alternatives for Black Duck Software Composition Analysis (SCA).