1. Home
  2. Software Composition Analysis (SCA) Tools
  3. Black Duck Software Composition Analysis (SCA) Reviews
  4. User Review of Black Duck Software Composition Analysis (SCA)
Black Duck's use in an Enterprise Software company
September 16, 2019

Black Duck's use in an Enterprise Software company

Anonymous | TrustRadius Reviewer
Score 5 out of 10
Vetted Review
Verified User

Overall Satisfaction with Black Duck

Black Duck is used for security and vulnerability scanning at my organization. It is being used across the entire organization. We scan all the projects' languages, binaries, source code, etc and ensure that no high security or license risk libraries, dependencies, or sub-dependencies are pushed into production. It does solve that business problem very well.
  • Security scanning very accurate.
  • License scanning is fantastic.
  • Very slow.
  • Bad UX.
  • Outdated design.
  • Too expensive.
  • Too expensive and time-consuming to use/add in the CI/CD.
Support seems very responsive.

Do you think Black Duck Software Composition Analysis (SCA) delivers good value for the price?

No

Are you happy with Black Duck Software Composition Analysis (SCA)'s feature set?

Yes

Did Black Duck Software Composition Analysis (SCA) live up to sales and marketing promises?

No

Did implementation of Black Duck Software Composition Analysis (SCA) go as expected?

Yes

Would you buy Black Duck Software Composition Analysis (SCA) again?

No

I do not love the software. A lot of other solutions exist that have must more robust integration into CI/CDs, without complex configurations.