Code review software to decrease costs
January 21, 2025

Code review software to decrease costs

Suzanne Desmond | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User

Overall Satisfaction with Black Duck Software Composition Analysis (SCA)

This software checks out code for possible vulnerabilities and allow us to “shift left”. This allows the potential issue to be seen and addressed in the beginning stages before the cost to fix are too high.

Pros

  • Vulnerability scans
  • Tracking of the problem
  • Alerting

Cons

  • Have a scheduled alerting process for items in triage
  • I would like if problems could be “rolled up”, to see how many issues throughout the company need triaged
  • Export to csv
  • We have found issues that could have caused us thousands to resolve but it was caught
  • When log4j issue was found, this was instrumental in finding all locations where it needed resolved
If you don’t know how to scan for the language, it isn’t entirely user friendly

Do you think Black Duck Software Composition Analysis (SCA) delivers good value for the price?

Yes

Are you happy with Black Duck Software Composition Analysis (SCA)'s feature set?

Yes

Did Black Duck Software Composition Analysis (SCA) live up to sales and marketing promises?

Yes

Did implementation of Black Duck Software Composition Analysis (SCA) go as expected?

Yes

Would you buy Black Duck Software Composition Analysis (SCA) again?

Yes

The UI of the scan is quite nice to use. It can be separated into only a particular group can see the results (nice for NIST)

Comments

More Reviews of Black Duck Software Composition Analysis (SCA)

  1. Home
  2. Software Composition Analysis (SCA) Tools
  3. Black Duck Software Composition Analysis (SCA) Reviews
  4. User Review of Black Duck Software Composition Analysis (SCA)