WhiteSource Software

Open source security and licenses compliance

4,2 /5 (5 avaliações) Escreva uma avaliação!

Resumo do WhiteSource Software

O que é o WhiteSource Software?

WhiteSource is the leading solution for agile open source security and license compliance management.
It integrates with your development environments and DevOps pipeline to detect open source libraries with security or compliance issues in real-time.

WhiteSource doesn’t only alert on issues, it also provides actionable, validated remediation paths to enable quick resolution and automated policy enforcement to speed up time-to-fix. It also helps you focus on what matters by prioritizing remediation based on whether your code is actually using a vulnerable method or not, and gu aranteeing zero false positives.

We've got you covered with support for over 200 programming languages, and continuous tracking of multiple open source vulnerabilities databases including the NVD, security advisories, peer-reviewed vulnerability knowledge bases, and open source projects issue trackers.

Resumo do WhiteSource Software

Preços

A partir de
N/A

Opções de preços

Teste Grátis
Assinatura
Relação qualidade/preço

Starting at $4,000 a year, based on contributing developers, get our pricing here: https://whitesourcesoftware.com/pricing


Recursos do WhiteSource Software

Dispositivos
Porte da empresa
P M G
Mercados
Estados Unidos, Canadá, Reino Unido, Austrália, China e outros 3, Índia, Japão, Alemanha
Idiomas
Inglês, Francês, Alemão, Hebreu

Mídias

WhiteSource Software - Vídeo

WhiteSource Software - Avaliações

WhiteSource Software - Avaliações

Classificação geral
4,2
/
5
Excelente
3

Muito bom
1

Regular
0

Ruim
1

Péssimo
0

Relação qualidade/preço
1
Recursos
3
Praticidade
3,7
Suporte ao cliente
4,7
80% dos usuários recomendam este app
Udi M.

FOSS lifecycle management with Whitesource

Using Whitesource to manage the process of analysing FOSS for a large product with hundreds of opensource dependencies.
Makes life much easier and helps you cover all dependencies much more accurately.

Some processes are still a bit course (though improved dramatically over the past 18 months)
Refresh performance might be a bit slow when there are very large dependency lists.

Best product out there for FOSS lifecycle management


Traduzir com Google
Shaul S.

work with it for a long time still place to improve.

It aggregates my licenses in one centralized place. The software helps me to generate the reports for many requests that I have inside my organization. It also helps me to identify the changes between versions and compare them.


Traduzir com Google
Don T.

Tons of false positives, prepare to spend hours fixing it manually

After much manual configuration, a nicely formatted output that looks reputable. I could have just made my own in excel a lot faster.


Traduzir com Google
John mcintire

Easy to use. Saves tons of time.

We used to document it all manually. Now its done easily and effectively. Not to mention that we missed many things, so with this we were able to fix some small issues before they become big issues....


Traduzir com Google
Alice akins

License Management in the cloud

I use the free cloud based service of White Source and it is pretty well done. Things get done quickly and easy and the software helps me to track open source licences. There is nothing to complain about it!


Traduzir com Google
Udi M.
Traduzido para o Português
Traduzido para o Português

FOSS lifecycle management with Whitesource

Avaliado em 10/11/2015
Fonte da avaliação: Capterra

Using Whitesource to manage the process of analysing FOSS for a large product with hundreds of opensource dependencies.
Makes life much easier and helps you cover all dependencies much more accurately.

Some processes are still a bit course (though improved dramatically over the past 18 months)
Refresh performance might be a bit slow when there are very large dependency lists.

Best product out there for FOSS lifecycle management

Detalhamento da qualificação

Praticidade
Suporte ao cliente

Shaul S.
Traduzido para o Português
Traduzido para o Português

work with it for a long time still place to improve.

Avaliado em 10/11/2015
Fonte da avaliação: Capterra

It aggregates my licenses in one centralized place. The software helps me to generate the reports for many requests that I have inside my organization. It also helps me to identify the changes between versions and compare them.

Detalhamento da qualificação

Praticidade
Suporte ao cliente

Don T.
Traduzido para o Português
Traduzido para o Português

Tons of false positives, prepare to spend hours fixing it manually

Usado Outro durante 1 a 5 meses
Avaliado em 07/06/2018
Fonte da avaliação: Capterra

After much manual configuration, a nicely formatted output that looks reputable. I could have just made my own in excel a lot faster.

Vantagens

Fast, quick reviews of your code. They do a good job of putting all the relevant reports and dashboards in front of you quickly. Once you manually fix everything, it can look really good.

Desvantagens

The false positives are awful. I had to spend hours and hours manually fixing everything it mis-identified - dozens of libraries and thousands of source files. If you use a library not in its database... too bad. You can make a support request and wait for them to enter it for you, whenever they get around to it.
The search is pretty awful. There is some kind of syntax to using it but when I asked our account rep, she couldn't give me any documentation on it. You will frequently see results like "openssl-v0_9_8" in your search, but if you type "openssl" it will vanish and not come up. Don't ever both trying to search for a version, it doesn't work. This results in a lot of time scrolling through very large lists. Naming schemes are random and follow no established pattern.
For a good half of all libraries, they have not assigned a license. Guess who gets to go google search them all? You, the user! Isn't the point of this tool to help me identify the licensing?
UI navigation is challenging. Back button will take you to a different place than you were almost every time. You'll love the dashboard... because you have to go back to it roughly every 5 minutes and start over.
No great system for notes/todos/reminders. When you have to fix 60 libraries, it's hard to remember what you want to do with each one.

Detalhamento da qualificação

Relação qualidade/preço
Praticidade
Suporte ao cliente

Probabilidade de recomendação: 1.0/10

John mcintire
Traduzido para o Português
Traduzido para o Português

Easy to use. Saves tons of time.

Avaliado em 28/05/2013
Fonte da avaliação: GetApp

We used to document it all manually. Now its done easily and effectively. Not to mention that we missed many things, so with this we were able to fix some small issues before they become big issues....

Vantagens

easy
inexpensive
very comprehensive
no more hassle

Alice akins
Traduzido para o Português
Traduzido para o Português

License Management in the cloud

Avaliado em 17/09/2012
Fonte da avaliação: GetApp

I use the free cloud based service of White Source and it is pretty well done. Things get done quickly and easy and the software helps me to track open source licences. There is nothing to complain about it!

Recomendação do usuário
1/10
Baseado em 5 usuários
Compare as alternativas por recomendação dos usuários
Compare com alternativas

Preço do WhiteSource Software

Preço do WhiteSource Software

A partir de
N/A
Teste Grátis
Assinatura
Relação qualidade/preço

Starting at $4,000 a year, based on contributing developers, get our pricing here: https://whitesourcesoftware.com/pricing

Starting at $4,000 a year, based on contributing developers, get our pricing here: https://whitesourcesoftware.com/pricing

Relação qualidade/preço
1/5
Baseado em 5 usuários
Compare as alternativas por relação qualidade/preço
Compare com alternativas

Recursos do WhiteSource Software

Recursos do WhiteSource Software

API
Acompanhamento de atividades
Alertas/transferência
Auditoria
Controle do acesso
Dados em tempo real
Ferramentas de colaboração
Função de busca
Gestão de conformidade
Gestão do fluxo de trabalho
Importação/exportação de dados
Integração de terceiros
Interface para arrastar e soltar
Monitoramento
Monitoramento em tempo real
Notificações automáticas
Painel de atividades
Permissões por função
Relatórios e estatística
Visualização de dados
Recursos
3/5
Baseado em 5 usuários
Compare as alternativas por avaliações dos recursos
Compare com alternativas

Categorias

Mais informações sobre WhiteSource Software

Mais informações sobre WhiteSource Software

Principais recursos do WhiteSource Software

  • Automated Policies- Premium Feature
  • Automatic License Information Retrieval
  • Conditional Approval- Premium Feature
  • Free, Cloud-Based Service
  • Instant Audits
  • New Version Alerts- Premium Feature
  • Open Source Inventory Management
  • Organizational Licenses Report- Premium Feature
  • Privacy
  • Request and Approval Workflows
  • Risk Analysis
  • Risk and Task Management Dashboard

Vantagens

- Find and fix open source vulnerabilities, in real time
- Prioritize vulnerabilities based on effectiveness
- Inventory management
- Open source license compliance
- Enforce policies automatically and create reports for all teams: security, DevOps, legal and management
- Supports due diligence, OEM or M&A

Perguntas frequentes sobre o WhiteSource Software

Perguntas frequentes sobre o WhiteSource Software

Abaixo estão algumas perguntas frequentes sobre o WhiteSource Software.

P: Que tipo de planos o WhiteSource Software oferece?

O WhiteSource Software oferece os seguintes planos de pagamento:

Modelo de preços: Assinatura

Teste Grátis: Disponível

Starting at $4,000 a year, based on contributing developers, get our pricing here: https://whitesourcesoftware.com/pricing

P: Quais são os principais recursos do WhiteSource Software?

O WhiteSource Software oferece os seguintes recursos:

  • Automated Policies- Premium Feature
  • Automatic License Information Retrieval
  • Conditional Approval- Premium Feature
  • Free, Cloud-Based Service
  • Instant Audits
  • New Version Alerts- Premium Feature
  • Open Source Inventory Management
  • Organizational Licenses Report- Premium Feature
  • Privacy
  • Request and Approval Workflows
  • Risk Analysis
  • Risk and Task Management Dashboard

P: Quem costuma usar o WhiteSource Software?

Os clientes habituais do WhiteSource Software são:

Pequenas empresas, Grandes empresas, Empresas de médio porte

P: Em que idioma o WhiteSource Software está?

O WhiteSource Software está nos seguintes idiomas:

Inglês, Francês, Alemão, Hebreu

P: Que tipo de planos o WhiteSource Software oferece?

O WhiteSource Software tem os seguintes planos de preços:

Assinatura

P: O WhiteSource Software é compatível com disponíveis móveis?

Não temos informações sobre os dispositivos compatíveis com o WhiteSource Software.

P: O WhiteSource Software se integra com quais outros aplicativos?

O WhiteSource Software se integra com os seguintes aplicativos:

Bitbucket, CircleCI, Cloudbees, Docker Cloud, GitHub, GitLab, Jira, Microsoft Azure, ThreadFix, Travis CI

P: Que nível de suporte o WhiteSource Software oferece?

O WhiteSource Software oferece as seguintes opções de suporte:

FAQs, Base de conhecimento, Suporte por telefone, Tutoriais em vídeo