2019-09-19T08:39:00Z
it_user434868 - PeerSpot reviewer
Senior Director of Delivery at a tech services company with 51-200 employees
  • 0
  • 4

What advice do you have for others considering WhiteSource?

If you were talking to someone whose organization is considering WhiteSource, what would you say?

How would you rate it and why? Any other tips or advice?

7
PeerSpot user
7 Answers
ZD
Business Process Analyst at a financial services firm with 1,001-5,000 employees
Real User
Top 20
2021-02-22T14:10:50Z
Feb 22, 2021

I would rate WhiteSource a three out of ten considering the fact that we couldn't use it while we were paying for it. It had good features, but we couldn't use it.

Search for a product comparison
WL
Sr. Director, Cloud Operations at Apttus Corporation
Real User
Top 20
2021-01-15T20:36:24Z
Jan 15, 2021

I would rate WhiteSource a nine out of ten. It is a good product.

NK
DevOps CI/CD Team Lead at LivePerson
Real User
2020-01-16T08:31:00Z
Jan 16, 2020

Improve the UI please... developers cannot find themselves in this dashboard.

reviewer1264290 - PeerSpot reviewer
Project Manager at a wellness & fitness company with 11-50 employees
Real User
2020-01-06T10:07:00Z
Jan 6, 2020

I believe we’re still in a stage where we’re trying to gain all the benefits of the solution and understand what features can be maximized. The product is simple on one hand as it's so easy to use, run and get insights from, but on the other hand, it offers so much that it’s hard to fully grasp all its capabilities. I’m not sure I have the best knowledge so far to recommend features and capabilities since this is very new to us. Currently, we’re happy to have something that addresses our needs.

reviewer1257792 - PeerSpot reviewer
Co Founder at a consumer goods company with 11-50 employees
Real User
2019-12-31T07:22:00Z
Dec 31, 2019

The good thing is that their product just keeps getting better. They are very attentive to their customers. All in all, if you care about security, this product is a must. We all love open source, but I was always afraid of the headache in handling all the licensing/updates/vulnerabilities. The peace of mind we have now is a total game-changer.

reviewer1255491 - PeerSpot reviewer
VP R&D at a tech services company with 11-50 employees
Real User
2019-12-23T12:59:00Z
Dec 23, 2019

Overall, this is a great product.

Learn what your peers think about Mend. Get advice and tips from experienced pros sharing their opinions. Updated: November 2022.
657,849 professionals have used our research since 2012.
Daniel Hall - PeerSpot reviewer
Technical Architect at Dwr Cymru Welsh Water
Real User
2019-09-19T08:39:00Z
Sep 19, 2019

For anybody who is researching this type of solution, my suggestion is to try them first. We tried quite a few of the various toolings available, and some of them are just not workable. They're very different on paper, so you have to use them to really compare them. I would rate this solution a seven out of ten.

Related Questions
Netanya Carmi - PeerSpot reviewer
Content Manager at PeerSpot (formerly IT Central Station)
Nov 8, 2021
Which is better and why?
See 1 answer
Nov 8, 2021
We researched Black Duck but ultimately chose WhiteSource when looking for an application security tool. WhiteSource is a software solution that enables agile open source security and license compliance management. One of the advantages of WhiteSource is the visibility and full control it offers over how open source is used in the organization. The system sends real-time alerts and reports. The software also automatically enforces your open source policies. WhiteSource integrates with your repositories and CI servers. We have workloads in multiple languages, so it was great that WhiteSource integrates with C family languages, Python, Java, Ruby, and more. The system monitors the software, correlating them against your previously set policies. When it finds a policy violation, it blocks the vulnerable, open-source component. While I like WhiteSource’s performance, the UI is not user-friendly, and it has a learning curve. It would be better if the prioritization feature would include more than Java and JavaScript. Black Duck is a software composition analysis (SCA). We liked the ease of use and integration. It was really fast for scanning the repositories. The automatic scanning integrates greatly with DevOps and SecOps. Another feature we liked of Black Duck was the comprehensive knowledge base. When the software scans the repositories, it compares the identified inventory to the Black Duck knowledge base and lists vulnerabilities and license issues. The governance was superior in WhiteSource that’s why we ultimately chose it. Black Duck’s governance is poor. You don’t have a lot of control over which team is using what. The tenancy model is also kind of complex to understand. Their pay-as-you-use pricing model ends up being more costly too. Conclusions: Black Duck is well suited for organizations that need a tool that integrates seamlessly to a continuous integration cycle. Overall, WhiteSource is a complete solution because it detects and fixes vulnerabilities on the spot.
Netanya Carmi - PeerSpot reviewer
Content Manager at PeerSpot (formerly IT Central Station)
Oct 20, 2021
Which is better and why?
Related Articles
Netanya Carmi - PeerSpot reviewer
Content Manager at PeerSpot (formerly IT Central Station)
Apr 19, 2022
PeerSpot’s crowdsourced user review platform helps technology decision-makers around the world to better connect with peers and other independent experts who provide advice without vendor bias. Our users have ranked these solutions according to their valuable features, and discuss which features they like most and why. You can read user reviews for the Top 5 Software Composition Analysis (SCA...
Explore this product
Related Articles
Netanya Carmi - PeerSpot reviewer
Content Manager at PeerSpot (formerly IT Central Station)
Apr 19, 2022
Top 5 Software Composition Analysis (SCA) Solutions 2022
PeerSpot’s crowdsourced user review platform helps technology decision-makers around the world to...
Download Free Report
Download our free Mend Report and get advice and tips from experienced pros sharing their opinions. Updated: November 2022.
DOWNLOAD NOW
657,849 professionals have used our research since 2012.