Overview
Product Information on Black Duck Software Composition Analysis
What is Black Duck Software Composition Analysis?
Black Duck Software Composition Analysis Pricing
Black Duck Software Composition Analysis Product Images
Overall experience with Black Duck Software Composition Analysis
“BlackDuck Offers Robust Integration and Reporting Yet Faces Dashboard Performance Issues”
“Reachability Remains a Concern Despite Satisfactory Functionality for Main Purpose”
About Company
Company Description
Black Duck builds trust in software by enabling organizations to manage application security, quality, and compliance risks at the speed their business demands. Black Duck solutions help developers to secure code as fast as they write it; development and DevSecOps teams to automate testing within development pipelines without compromising velocity; and security teams to proactively manage risk and focus remediation efforts on what matters most. With Black Duck, organizations can transform the way they build and deliver software, aligning people, processes, and technology to intelligently address software risks across their portfolio and at all stages of the application lifecycle.
Company Details
Do You Manage Peer Insights at Black Duck?
Access Vendor Portal to update and manage your profile.
Key Insights
A Snapshot of What Matters - Based on Validated User Reviews
Reviewer Insights for: Black Duck Software Composition Analysis
Deciding Factors: Black Duck Software Composition Analysis Vs. Market Average
Performance of Black Duck Software Composition Analysis Across Market Features
Black Duck Software Composition Analysis Likes & Dislikes
Black Duck provides strong Knowledge Base Data and License Data, along with NVD alerts, BD-SCA provides BDSA which is curated by a dedicated security team. With the new AI model Scanning capability which helps our organisation to manage the licensing and security risk effectively.
good ScA tool with result also would love better reachability
1. Ease of use and search capabilities. 2. Integrates with our Power BI - dashboards help us track the security posture of our products. 3. The support team is responsive, honest and overall we are satisfied.
Performance issues especially while loading the projects. BlackDuck SCA Dashboard. Limited LDAP Server capabilities.
sbom lifecycle management ciuld be better
The reporting bug that they've had in the product for about 4 releases now. We have mitigated the issues and yet they still appear as open, which leads to a misleading status.
Top Black Duck Software Composition Analysis Alternatives
Peer Discussions
Black Duck Software Composition Analysis Reviews and Ratings
- Manager, IT Security and Risk Management10B+ USDSoftwareReview Source
BlackDuck Offers Robust Integration and Reporting Yet Faces Dashboard Performance Issues
BlackDuck provides robust REST API and CLI capabilities for seamless integration and automation with other tools. It helps in automating DevSecOps effectively by automating policy enforcement for projects, pull request decoration with Rapid scan feature and reporting capability with Reporting Database and SBOM report. - Research and Development Associate1B-10B USDSoftwareReview Source
Black Duck - an excellent SCA tool
Black duck helps us greatly in identifying critical vulnerabilities. We did encounter a reporting buf that was not fixed over several releases, hence the non-perfect score. - IT Security & Risk Management Associate10B+ USDManufacturingReview Source
Reachability Remains a Concern Despite Satisfactory Functionality for Main Purpose
its been working fine for the purpose though need better reachability - Security & Risk Management50M-1B USDTelecommunicationReview Source
Transparency in CVE Status Reporting and Database Updates Remain Key User Concerns
Black Duck is the only SCA solution we found which supports both C/C++ source code/binary detection, and can be deployed in pravacy. This solution has strong ability/power in component analysis, and the vulnerabilities database is really up-to-date. We can find further and deeply support in CVE management and fix issues. Also the vendors' technical support is so strong, any problems/issues can be solved in really short time. - IT Security SpecialistGov't/PS/EdGovernmentReview Source
BlackDuck's Intuitive Interface Covers All Programming Languages
BlackDuck was easy to setup and the vendor provided clear instructions on the configuration.