Welcome!

News Feed Item

Black Duck Software Announces Next Generation OSS Logistics Solution to Manage and Optimize Open Source

Black Duck Software, the leading OSS Logistics solutions provider enabling the adoption and management of open source software (OSS), today announced the release of Black Duck ® Suite™ 7 software that helps companies maximize the benefits of open source while managing the associated operational, legal, and security risks.

Black Duck Suite 7 provides an end-to-end OSS Logistics solution for enterprises using open source at scale, including: choosing the right OSS code; approving it automatically with built-in policies and workflows; scanning the code for origins and licenses; tracking what has been used and where for ease of reuse and maintenance; securing against vulnerabilities; and confidently delivering products and code throughout the supply chain.

“Open source is now a strategic element of all software development, and properly managing its use is essential for increasing the quality, innovation, and time-to-market of software solutions,” said Lou Shipley, President and CEO, Black Duck Software. “Black Duck customers have the competitive advantage of an in-depth knowledge of their source code and can easily adapt to security risks, like the recent Heartbleed vulnerability. Through the Black Duck Suite, enterprises gain greater control and visibility into where and how open source is used throughout the development lifecycle, mitigating risks and fully maximizing the benefits OSS offers.”

New Interface, Reporting, and Security Capabilities

Black Duck offers customers unparalleled insight into their open source code through the industry’s most comprehensive database of open source projects, the Black Duck KnowledgeBase. A range of newly added Black Duck Suite capabilities leverages years of experience analyzing code and assisting customers with OSS logistics solutions:

  • Analysis templates save time and simplify the open source reporting process, codifying best practices in OSS logistics.
  • Security data from the National Vulnerabilities Database (NVD) Common Vulnerabilities and Exposures (CVE) now includes base scoring, impact scoring, and exploitability scoring, making it easy to assess the impact of security vulnerabilities.
  • New dashboard allows for quick access to basic and advanced search capabilities, including enhanced search supported by Apache Solr for indexing the Black Duck KnowledgeBase and customer data.
  • An updated, graphical user interface incorporates user defined tagging functionality and other features to increase the flexibility of the Black Duck OSS Logistics solution.
  • Additional portfolio views provide an overview of key data such as top components, top licenses, and top programming languages currently in use in a customer’s software data.

Expanded Integration Set

OSS Logistics, delivered through the Black Duck Suite, gives your organization systematic control over the software development process by integrating with existing Integrated Development Environments (IDEs), Build and Continuous Integration (CI) tools, and reporting and repository management systems. In addition to existing integrations with JFrog Artifactory repository manager, IBM’s Rational Team Concert application lifecycle management solution, Maven builds, and the Coverity Connect software testing dashboard, Black Duck Suite 7 includes four new integrations:

  • Jenkins CI: Component discovery and approval is now integrated with the continuous build process
  • SonarQube: Key open source metrics are now available through SonarQube dashboards
  • Eclipse IDE: Developers can now access open source component meta-data directly from within Eclipse
  • Nexus: Component discovery and approvals are now available through Nexus

Black Duck Suite 7 is currently shipping and can be deployed as an on-premise solution or through a software-as-a-service (SaaS).

About Black Duck Software

Black Duck provides the world’s only end-to-end platform for OSS Logistics, enabling enterprises of every size to optimize the opportunities and solve the logistical challenges that come with open source adoption, governance, and management. As part of the greater open source community, Black Duck connects developers to comprehensive OSS resources through The Black Duck Open Hub (formerly Ohloh), and to the latest commentary from industry experts through the Open Source Delivers blog. Black Duck also hosts the Open Source Think Tank, an international event where thought leaders collaborate on the future of open source. Black Duck is headquartered near Boston and has offices in San Mateo, London, Paris, Frankfurt, Hong Kong, Tokyo, Seoul, and Beijing. For more information about how to leverage open source to deliver faster innovation, greater creativity, and improved efficiency, visit www.blackducksoftware.com and follow the company at @black_duck_sw.

More Stories By Business Wire

Copyright © 2009 Business Wire. All rights reserved. Republication or redistribution of Business Wire content is expressly prohibited without the prior written consent of Business Wire. Business Wire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

Latest Stories
"Once customers get a year into their IoT deployments, they start to realize that they may have been shortsighted in the ways they built out their deployment and the key thing I see a lot of people looking at is - how can I take equipment data, pull it back in an IoT solution and show it in a dashboard," stated Dave McCarthy, Director of Products at Bsquare Corporation, in this SYS-CON.tv interview at @ThingsExpo, held November 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA.
Everyone knows that truly innovative companies learn as they go along, pushing boundaries in response to market changes and demands. What's more of a mystery is how to balance innovation on a fresh platform built from scratch with the legacy tech stack, product suite and customers that continue to serve as the business' foundation. In his General Session at 19th Cloud Expo, Michael Chambliss, Head of Engineering at ReadyTalk, discussed why and how ReadyTalk diverted from healthy revenue and mor...
Whether your IoT service is connecting cars, homes, appliances, wearable, cameras or other devices, one question hangs in the balance – how do you actually make money from this service? The ability to turn your IoT service into profit requires the ability to create a monetization strategy that is flexible, scalable and working for you in real-time. It must be a transparent, smoothly implemented strategy that all stakeholders – from customers to the board – will be able to understand and comprehe...
What happens when the different parts of a vehicle become smarter than the vehicle itself? As we move toward the era of smart everything, hundreds of entities in a vehicle that communicate with each other, the vehicle and external systems create a need for identity orchestration so that all entities work as a conglomerate. Much like an orchestra without a conductor, without the ability to secure, control, and connect the link between a vehicle’s head unit, devices, and systems and to manage the ...
You have great SaaS business app ideas. You want to turn your idea quickly into a functional and engaging proof of concept. You need to be able to modify it to meet customers' needs, and you need to deliver a complete and secure SaaS application. How could you achieve all the above and yet avoid unforeseen IT requirements that add unnecessary cost and complexity? You also want your app to be responsive in any device at any time. In his session at 19th Cloud Expo, Mark Allen, General Manager of...
The Internet of Things (IoT) promises to simplify and streamline our lives by automating routine tasks that distract us from our goals. This promise is based on the ubiquitous deployment of smart, connected devices that link everything from industrial control systems to automobiles to refrigerators. Unfortunately, comparatively few of the devices currently deployed have been developed with an eye toward security, and as the DDoS attacks of late October 2016 have demonstrated, this oversight can ...
SYS-CON Events has announced today that Roger Strukhoff has been named conference chair of Cloud Expo and @ThingsExpo 2017 New York. The 20th Cloud Expo and 7th @ThingsExpo will take place on June 6-8, 2017, at the Javits Center in New York City, NY. "The Internet of Things brings trillions of dollars of opportunity to developers and enterprise IT, no matter how you measure it," stated Roger Strukhoff. "More importantly, it leverages the power of devices and the Internet to enable us all to im...
More and more brands have jumped on the IoT bandwagon. We have an excess of wearables – activity trackers, smartwatches, smart glasses and sneakers, and more that track seemingly endless datapoints. However, most consumers have no idea what “IoT” means. Creating more wearables that track data shouldn't be the aim of brands; delivering meaningful, tangible relevance to their users should be. We're in a period in which the IoT pendulum is still swinging. Initially, it swung toward "smart for smar...
"ReadyTalk is an audio and web video conferencing provider. We've really come to embrace WebRTC as the platform for our future of technology," explained Dan Cunningham, CTO of ReadyTalk, in this SYS-CON.tv interview at WebRTC Summit at 19th Cloud Expo, held November 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA.
Financial Technology has become a topic of intense interest throughout the cloud developer and enterprise IT communities. Accordingly, attendees at the upcoming 20th Cloud Expo at the Javits Center in New York, June 6-8, 2017, will find fresh new content in a new track called FinTech.
Bert Loomis was a visionary. This general session will highlight how Bert Loomis and people like him inspire us to build great things with small inventions. In their general session at 19th Cloud Expo, Harold Hannon, Architect at IBM Bluemix, and Michael O'Neill, Strategic Business Development at Nvidia, discussed the accelerating pace of AI development and how IBM Cloud and NVIDIA are partnering to bring AI capabilities to "every day," on-demand. They also reviewed two "free infrastructure" pr...
As data explodes in quantity, importance and from new sources, the need for managing and protecting data residing across physical, virtual, and cloud environments grow with it. Managing data includes protecting it, indexing and classifying it for true, long-term management, compliance and E-Discovery. Commvault can ensure this with a single pane of glass solution – whether in a private cloud, a Service Provider delivered public cloud or a hybrid cloud environment – across the heterogeneous enter...
Without lifecycle traceability and visibility across the tool chain, stakeholders from Planning-to-Ops have limited insight and answers to who, what, when, why and how across the DevOps lifecycle. This impacts the ability to deliver high quality software at the needed velocity to drive positive business outcomes. In his general session at @DevOpsSummit at 19th Cloud Expo, Phil Hombledal, Solution Architect at CollabNet, discussed how customers are able to achieve a level of transparency that e...
WebRTC is the future of browser-to-browser communications, and continues to make inroads into the traditional, difficult, plug-in web communications world. The 6th WebRTC Summit continues our tradition of delivering the latest and greatest presentations within the world of WebRTC. Topics include voice calling, video chat, P2P file sharing, and use cases that have already leveraged the power and convenience of WebRTC.
Cloud Expo, Inc. has announced today that Andi Mann returns to 'DevOps at Cloud Expo 2017' as Conference Chair The @DevOpsSummit at Cloud Expo will take place on June 6-8, 2017, at the Javits Center in New York City, NY. "DevOps is set to be one of the most profound disruptions to hit IT in decades," said Andi Mann. "It is a natural extension of cloud computing, and I have seen both firsthand and in independent research the fantastic results DevOps delivers. So I am excited to help the great t...