Skip to main content
TrustRadius
FossID Workbench

FossID Workbench

Overview

What is FossID Workbench?

With nearly a decade of expertise delivering open source auditing services, FossID supports software auditing and compliance. FossID’s Software Composition Analysis (SCA) tool, Workbench, and professional services are designed to ensure comprehensive open source compliance and security in software development.Software…

Read more
Recent Reviews
TrustRadius

Leaving a review helps other professionals like you evaluate Software Composition Analysis (SCA) Tools

Be the first one in your network to review FossID Workbench, and make your voice heard!

Return to navigation

Pricing

View all pricing
FossID Workbench

FossID Workbench

N/A
Unavailable

What is FossID Workbench?

With nearly a decade of expertise delivering open source auditing services, FossID supports software auditing and compliance. FossID’s Software Composition Analysis (SCA) tool, Workbench, and…

Entry-level set up fee?

  • Setup fee optional

Offerings

  • Free Trial
  • Free/Freemium Version
  • Premium Consulting/Integration Services

Would you like us to let the vendor know that you want pricing?

Alternatives Pricing

Sonatype Platform

Sonatype Platform

$165
Per user per month, billed annually per user
What is Sonatype Platform?

Sonatype secures the software supply chain and protects organizations' vital software development lifecycle(SDLC). The platform unites security teams and developers to accelerate digital innovation without sacrificing security or quality across the SDLC. With users among more than 2,000…

Snyk

Snyk

Free
What is Snyk?

Snyk’s Developer Security Platform automatically integrates with a developer’s workflow and helps security teams to collaborate with their development teams. It boasts a developer-first approach that ensures organizations can secure all of the critical components of their applications from code to…

Return to navigation

Product Details

What is FossID Workbench?

With nearly a decade of expertise delivering open source auditing services, FossID supports software auditing and compliance. FossID’s Software Composition Analysis (SCA) tool, Workbench, and professional services are designed to ensure comprehensive open source compliance and security in software development.


Software Composition Analysis (SCA)

FossID Workbench enables precise identification of open source components and vulnerabilities. It integrates into software development cycles, providing license recognition, proactive security checks, and detailed compliance reporting. FossID Workbench is available across various industries, and helps to ensure that organizations can confidently meet their legal, security, and operational needs in open source software management.


  • Comprehensive Scanning
    Creates a thorough and complete softwarebill of materials that catalogs all open source in use, regardless of how it made its way into the codebase.
  • Detailed Reporting
    Ensures distribution compliance by generating reports, notices files, and copyright statements.
  • Integration & Extensibility
    Features custom workflows, performing administrative tasks, generating reports, and more with the API.
  • Governance & Administration
    Provides granular visibility and access to different teams and roles with robust RBAC.
  • Flexible Deployment
    FossID Workbench is available either On-Prem or with Hybrid Deployment

FossID Workbench Features

  • Supported: Vulnerable Snippet Detection
  • Supported: Dependency Analysis
  • Supported: SBOM Generation & Reports
  • Supported: Open Source Policy Management
  • Supported: Code Snippet-Level Open Source Scan
  • Supported: SDLC Integration via API or CLI

FossID Workbench Screenshots

Screenshot of a scan of repositories that detects all Free and Open Source Software (FOSS) from complete components, packages, and libraries to small snippets of open source.Screenshot of a Software Bill of Materials (SBOMs). FossID Workbench can automatically export and import Software Package Data Exchange (SPDX) reports containing license text, copyright statements, vulnerabilities and even snippet level information.Screenshot of a presentation of license-related risks in software that helps to remain compliant. Workbench detects over 2000 different licenses encountered overed years of open source auditing from strong/weak copyleft to the most obscure source-available and non-commercial licenses. Workbench helps users to understand all license related risks that could affect your products and services.Screenshot of Workbench’s comprehensive policy management that can prevent usage of strong/weak copyleft or source-available software licenses in products and services.Screenshot of VulnSnippet Finder: Snippet detection for vulnerable open source snippets. FossID’s Knowledge Base snippet detection capabilities include special detection of vulnerable open source snippets. While most security scanners assume open source vulnerabilities based on component and version, VulnSnippet Finder bases its search on the exact lines of code/snippets that make software vulnerable.

FossID Workbench Integrations

FossID Workbench Competitors

FossID Workbench Technical Details

Deployment TypesOn-premise, Software as a Service (SaaS), Cloud, or Web-Based
Operating SystemsWindows, Linux, Mac
Mobile ApplicationNo
Supported CountriesGlobal
Supported LanguagesEnglish, Japanese

FossID Workbench Downloadables

FossID Workbench Customer Size Distribution

Consumers0%
Small Businesses (1-50 employees)0%
Mid-Size Companies (51-500 employees)10%
Enterprises (more than 500 employees)90%
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews

Sorry, no reviews are available for this product yet

Return to navigation