Welcome!

News Feed Item

Black Duck Software Announces Next Generation OSS Logistics Solution to Manage and Optimize Open Source

Black Duck Software, the leading OSS Logistics solutions provider enabling the adoption and management of open source software (OSS), today announced the release of Black Duck ® Suite™ 7 software that helps companies maximize the benefits of open source while managing the associated operational, legal, and security risks.

Black Duck Suite 7 provides an end-to-end OSS Logistics solution for enterprises using open source at scale, including: choosing the right OSS code; approving it automatically with built-in policies and workflows; scanning the code for origins and licenses; tracking what has been used and where for ease of reuse and maintenance; securing against vulnerabilities; and confidently delivering products and code throughout the supply chain.

“Open source is now a strategic element of all software development, and properly managing its use is essential for increasing the quality, innovation, and time-to-market of software solutions,” said Lou Shipley, President and CEO, Black Duck Software. “Black Duck customers have the competitive advantage of an in-depth knowledge of their source code and can easily adapt to security risks, like the recent Heartbleed vulnerability. Through the Black Duck Suite, enterprises gain greater control and visibility into where and how open source is used throughout the development lifecycle, mitigating risks and fully maximizing the benefits OSS offers.”

New Interface, Reporting, and Security Capabilities

Black Duck offers customers unparalleled insight into their open source code through the industry’s most comprehensive database of open source projects, the Black Duck KnowledgeBase. A range of newly added Black Duck Suite capabilities leverages years of experience analyzing code and assisting customers with OSS logistics solutions:

  • Analysis templates save time and simplify the open source reporting process, codifying best practices in OSS logistics.
  • Security data from the National Vulnerabilities Database (NVD) Common Vulnerabilities and Exposures (CVE) now includes base scoring, impact scoring, and exploitability scoring, making it easy to assess the impact of security vulnerabilities.
  • New dashboard allows for quick access to basic and advanced search capabilities, including enhanced search supported by Apache Solr for indexing the Black Duck KnowledgeBase and customer data.
  • An updated, graphical user interface incorporates user defined tagging functionality and other features to increase the flexibility of the Black Duck OSS Logistics solution.
  • Additional portfolio views provide an overview of key data such as top components, top licenses, and top programming languages currently in use in a customer’s software data.

Expanded Integration Set

OSS Logistics, delivered through the Black Duck Suite, gives your organization systematic control over the software development process by integrating with existing Integrated Development Environments (IDEs), Build and Continuous Integration (CI) tools, and reporting and repository management systems. In addition to existing integrations with JFrog Artifactory repository manager, IBM’s Rational Team Concert application lifecycle management solution, Maven builds, and the Coverity Connect software testing dashboard, Black Duck Suite 7 includes four new integrations:

  • Jenkins CI: Component discovery and approval is now integrated with the continuous build process
  • SonarQube: Key open source metrics are now available through SonarQube dashboards
  • Eclipse IDE: Developers can now access open source component meta-data directly from within Eclipse
  • Nexus: Component discovery and approvals are now available through Nexus

Black Duck Suite 7 is currently shipping and can be deployed as an on-premise solution or through a software-as-a-service (SaaS).

About Black Duck Software

Black Duck provides the world’s only end-to-end platform for OSS Logistics, enabling enterprises of every size to optimize the opportunities and solve the logistical challenges that come with open source adoption, governance, and management. As part of the greater open source community, Black Duck connects developers to comprehensive OSS resources through The Black Duck Open Hub (formerly Ohloh), and to the latest commentary from industry experts through the Open Source Delivers blog. Black Duck also hosts the Open Source Think Tank, an international event where thought leaders collaborate on the future of open source. Black Duck is headquartered near Boston and has offices in San Mateo, London, Paris, Frankfurt, Hong Kong, Tokyo, Seoul, and Beijing. For more information about how to leverage open source to deliver faster innovation, greater creativity, and improved efficiency, visit www.blackducksoftware.com and follow the company at @black_duck_sw.

More Stories By Business Wire

Copyright © 2009 Business Wire. All rights reserved. Republication or redistribution of Business Wire content is expressly prohibited without the prior written consent of Business Wire. Business Wire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

Latest Stories
SYS-CON Events announced today that Peak 10, Inc., a national IT infrastructure and cloud services provider, will exhibit at SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. Peak 10 provides reliable, tailored data center and network services, cloud and managed services. Its solutions are designed to scale and adapt to customers’ changing business needs, enabling them to lower costs, improve performance and focus intern...
SYS-CON Events announced today that Twistlock, the leading provider of cloud container security solutions, will exhibit at SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. Twistlock is the industry's first enterprise security suite for container security. Twistlock's technology addresses risks on the host and within the application of the container, enabling enterprises to consistently enforce security policies, monitor...
Most DevOps journeys involve several phases of maturity. Research shows that the inflection point where organizations begin to see maximum value is when they implement tight integration deploying their code to their infrastructure. Success at this level is the last barrier to at-will deployment. Storage, for instance, is more capable than where we read and write data. In his session at @DevOpsSummit at 20th Cloud Expo, Josh Atwell, a Developer Advocate for NetApp, will discuss the role and valu...
This talk centers around how to automate best practices in a multi-/hybrid-cloud world based on our work with customers like GE, Discovery Communications and Fannie Mae. Today’s enterprises are reaping the benefits of cloud computing, but also discovering many risks and challenges. In the age of DevOps and the decentralization of IT, it’s easy to over-provision resources, forget that instances are running, or unintentionally expose vulnerabilities.
Everywhere we turn in our industry we can find strong opinions about the direction, type and nature of cloud’s impact on computing and business. Another word that is used in every context in our industry is “hybrid.” In his session at 20th Cloud Expo, Alvaro Gonzalez, Director of Technical, Partner and Field Marketing at Peak 10, will use a combination of a few conceptual props and some research recently commissioned by Peak 10 to offer a real-world consideration of how the various categories of...
DevOps is often described as a combination of technology and culture. Without both, DevOps isn't complete. However, applying the culture to outdated technology is a recipe for disaster; as response times grow and connections between teams are delayed by technology, the culture will die. A Nutanix Enterprise Cloud has many benefits that provide the needed base for a true DevOps paradigm. In his Day 3 Keynote at 20th Cloud Expo, Chris Brown, a Solutions Marketing Manager at Nutanix, will explore t...
Five years ago development was seen as a dead-end career, now it’s anything but – with an explosion in mobile and IoT initiatives increasing the demand for skilled engineers. But apart from having a ready supply of great coders, what constitutes true ‘DevOps Royalty’? It’ll be the ability to craft resilient architectures, supportability, security everywhere across the software lifecycle. In his keynote at @DevOpsSummit at 20th Cloud Expo, Jeffrey Scheaffer, GM and SVP, Continuous Delivery Busine...
Detecting internal user threats in the Big Data eco-system is challenging and cumbersome. Many organizations monitor internal usage of the Big Data eco-system using a set of alerts. This is not a scalable process given the increase in the number of alerts with the accelerating growth in data volume and user base. Organizations are increasingly leveraging machine learning to monitor only those data elements that are sensitive and critical, autonomously establish monitoring policies, and to detect...
SYS-CON Events announced today that SoftLayer, an IBM Company, has been named “Gold Sponsor” of SYS-CON's 18th Cloud Expo, which will take place on June 7-9, 2016, at the Javits Center in New York, New York. SoftLayer, an IBM Company, provides cloud infrastructure as a service from a growing number of data centers and network points of presence around the world. SoftLayer’s customers range from Web startups to global enterprises.
The 21st International Cloud Expo has announced that its Call for Papers is open. Cloud Expo, to be held October 31 - November 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA, brings together Cloud Computing, Big Data, Internet of Things, DevOps, Digital Transformation, Machine Learning and WebRTC to one location. With cloud computing driving a higher percentage of enterprise IT budgets every year, it becomes increasingly important to plant your flag in this fast-expanding busin...
Multiple data types are pouring into IoT deployments. Data is coming in small packages as well as enormous files and data streams of many sizes. Widespread use of mobile devices adds to the total. In this power panel at @ThingsExpo, moderated by Conference Chair Roger Strukhoff, panelists will look at the tools and environments that are being put to use in IoT deployments, as well as the team skills a modern enterprise IT shop needs to keep things running, get a handle on all this data, and deli...
While some vendors scramble to create and sell you a fancy solution for monitoring your spanking new Amazon Lambdas, hear how you can do it on the cheap using just built-in Java APIs yourself. By exploiting a little-known fact that Lambdas aren’t exactly single threaded, you can effectively identify hot spots in your serverless code. In his session at 20th Cloud Expo, David Martin, Principal Product Owner at CA Technologies, will give a live demonstration and code walkthrough, showing how to ov...
SYS-CON Events announced today that Systena America will exhibit at SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. Systena Group has been in business for various software development and verification in Japan, US, ASEAN, and China by utilizing the knowledge we gained from all types of device development for various industries including smartphones (Android/iOS), wireless communication, security technology and IoT serv...
SYS-CON Events announced today that Loom Systems will exhibit at SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. Founded in 2015, Loom Systems delivers an advanced AI solution to predict and prevent problems in the digital business. Loom stands alone in the industry as an AI analysis platform requiring no prior math knowledge from operators, leveraging the existing staff to succeed in the digital era. With offices in S...
With major technology companies and startups seriously embracing Cloud strategies, now is the perfect time to attend @CloudExpo | @ThingsExpo, June 6-8, 2017, at the Javits Center in New York City, NY and October 31 - November 2, 2017, Santa Clara Convention Center, CA. Learn what is going on, contribute to the discussions, and ensure that your enterprise is on the right path to Digital Transformation.