Black Duck SCA - The premier dependency and container scanning tool
March 08, 2022

Black Duck SCA - The premier dependency and container scanning tool

Anonymous | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User

Overall Satisfaction with Black Duck Software Composition Analysis (SCA)

It's being used for dependency analysis to find out if there are any known CVEs existing by integrating them in the DevOps tooling. It's very useful to figure out vulnerabilities in the various open-source libraries. This ensures overall security, compliance, and risk management

Pros

  • Application and Container Scan
  • Source Code Dependency Analysis
  • Severity Prioritization

Cons

  • Improvements in Documentation
  • Live video examples
  • Application or Library Scans
  • Container scans
  • Dependency analysis
  • Increased efficiency of the teams
  • Rapid identification of security issues

Do you think Black Duck Software Composition Analysis (SCA) delivers good value for the price?

Yes

Are you happy with Black Duck Software Composition Analysis (SCA)'s feature set?

Yes

Did Black Duck Software Composition Analysis (SCA) live up to sales and marketing promises?

Yes

Did implementation of Black Duck Software Composition Analysis (SCA) go as expected?

Yes

Would you buy Black Duck Software Composition Analysis (SCA) again?

Yes

If you are using a lot of open-source libraries, which is most likely, this is a must-have to ensure no known vulnerabilities slip into production

Comments

More Reviews of Black Duck Software Composition Analysis (SCA)

  1. Home
  2. Software Composition Analysis (SCA) Tools
  3. Black Duck Software Composition Analysis (SCA) Reviews
  4. User Review of Black Duck Software Composition Analysis (SCA)