2019-09-19T08:39:00Z
it_user434868 - PeerSpot reviewer
Senior Director of Delivery at a tech services company with 51-200 employees
  • 0
  • 8

What do you like most about WhiteSource?

Hi Everyone,

What do you like most about WhiteSource?

Thanks for sharing your thoughts with the community!

20
PeerSpot user
20 Answers
GP
IT Service Manager at a wholesaler/distributor with 51-200 employees
Real User
Top 20
2022-07-17T14:21:00Z
Jul 17, 2022

I am the organizational deployment administrator for this tool, and I, along with other users in our company, especially the security team, appreciate the solution for several reasons. The UI is excellent, and scanning for security threats fits well into our workflow.

Search for a product comparison
Kevin Dsouza - PeerSpot reviewer
Intramural OfficialIntramural at Northeastern University
Real User
Top 10
2022-07-06T19:15:30Z
Jul 6, 2022

The vulnerability analysis is the best aspect of the solution.

ZvikaRonen - PeerSpot reviewer
Chief Technology Officer at FOSSAware
Real User
Top 5Leaderboard
2022-05-15T12:32:00Z
May 15, 2022

The dashboard view and the management view are most valuable.

Nils Hedström - PeerSpot reviewer
Architect/Developer at a insurance company with 5,001-10,000 employees
Real User
Top 10
2022-05-12T11:02:45Z
May 12, 2022

WhiteSource is unique in the scanning of open-source licenses. Additionally, the vulnerabilities aspect of the solution is a benefit. We don't use WhiteSource in the whole organization, but we use it for some projects. There we receive a sense of the vulnerabilities of the open-source components, which improves our security work. The reports are automated which is useful.

Ben Dyer - PeerSpot reviewer
Head of Software Engineering at a legal firm with 1,001-5,000 employees
Real User
Top 10
2022-05-10T15:47:00Z
May 10, 2022

WhiteSource helped reduce our mean time to resolution since the adoption of the product.

Shashidhar Gowda - PeerSpot reviewer
Program and Portfolio Management at Acceldata
Real User
Top 20
2022-03-02T12:13:50Z
Mar 2, 2022

We use a lot of open sources with a variety of containers, and the different open sources come with different licenses. Some come with dual licenses, some are risky and some are not. All our three use cases are equally important to us and we found WhiteSource handles them decently.

Learn what your peers think about Mend. Get advice and tips from experienced pros sharing their opinions. Updated: November 2022.
655,113 professionals have used our research since 2012.
MR
AVP at Temenos AG
Real User
2022-01-23T17:06:21Z
Jan 23, 2022

The inventory management as well as the ability to identify security vulnerabilities has been the most valuable for our business.

SK
Principal Software Architect at a tech services company with 10,001+ employees
Real User
Top 10
2021-08-30T10:35:31Z
Aug 30, 2021

The solution boasts a broad range of features and covers much of what an ideal SCA tool should.

AnandHosamani - PeerSpot reviewer
FOSS Coordinator at a manufacturing company with 5,001-10,000 employees
Real User
Top 5
2021-07-01T10:13:31Z
Jul 1, 2021

The solution is scalable.

ZD
Business Process Analyst at a financial services firm with 1,001-5,000 employees
Real User
Top 20
2021-02-22T14:10:50Z
Feb 22, 2021

The license management of WhiteSource was at a good level. As compared to other tools that I have used, its functionality for the licenses for the code libraries was quite good. Its UI was also fine.

WL
Sr. Director, Cloud Operations at Apttus Corporation
Real User
Top 20
2021-01-15T20:36:24Z
Jan 15, 2021

Its ease of use and good results are the most valuable.

NK
DevOps CI/CD Team Lead at LivePerson
Real User
2020-01-16T08:31:00Z
Jan 16, 2020

The most valuable feature is the unified JAR to scan for all langs (wss-scanner jar).

reviewer1261788 - PeerSpot reviewer
VP R&D at DealHub.io
Vendor
2020-01-07T12:57:00Z
Jan 7, 2020

With the fix suggestions feature, not only do you get the specific trace back to where the vulnerability is within your code, but you also get fix suggestions.

reviewer1264290 - PeerSpot reviewer
Project Manager at a wellness & fitness company with 11-50 employees
Real User
2020-01-06T10:07:00Z
Jan 6, 2020

The reporting capability gives us the option to generate an open-source license report in a single click, which gets all copyright and license information, including dependencies.

reviewer1257792 - PeerSpot reviewer
Co Founder at a consumer goods company with 11-50 employees
Real User
2019-12-31T07:22:00Z
Dec 31, 2019

It gives us full visibility into what we're using, what needs to be updated, and what's vulnerable, which helps us make better decisions.

Alon Michaeli - PeerSpot reviewer
Founder & CEO at Data+
Vendor
2019-12-26T12:47:00Z
Dec 26, 2019

Our dev team uses the fix suggestions feature to quickly find the best path for remediation.

reviewer1255491 - PeerSpot reviewer
VP R&D at a tech services company with 11-50 employees
Real User
2019-12-23T12:59:00Z
Dec 23, 2019

For us, the most valuable tool was open-source licensing analysis.

reviewer1250697 - PeerSpot reviewer
User at AVEVA
Vendor
2019-12-12T22:32:00Z
Dec 12, 2019

Attribution and license due diligence reports help us with aggregating the necessary data that we, in turn, have to provide to satisfy the various licenses copyright and component usage disclosures in our software.

reviewer1250700 - PeerSpot reviewer
Senior Productization Specialist at a tech services company with 51-200 employees
Real User
2019-12-12T14:38:00Z
Dec 12, 2019

The most valuable features are the reporting, customizing libraries "In-house, White list, license selection", comparing the products/projects, and License & Copyright resolution.

Daniel Hall - PeerSpot reviewer
Technical Architect at Dwr Cymru Welsh Water
Real User
2019-09-19T08:39:00Z
Sep 19, 2019

The most valuable feature is the inventory, where it compiles a list of all of the third-party libraries that we have on our estate.

Related Questions
Netanya Carmi - PeerSpot reviewer
Content Manager at PeerSpot (formerly IT Central Station)
Nov 8, 2021
Which is better and why?
See 1 answer
Nov 8, 2021
We researched Black Duck but ultimately chose WhiteSource when looking for an application security tool. WhiteSource is a software solution that enables agile open source security and license compliance management. One of the advantages of WhiteSource is the visibility and full control it offers over how open source is used in the organization. The system sends real-time alerts and reports. The software also automatically enforces your open source policies. WhiteSource integrates with your repositories and CI servers. We have workloads in multiple languages, so it was great that WhiteSource integrates with C family languages, Python, Java, Ruby, and more. The system monitors the software, correlating them against your previously set policies. When it finds a policy violation, it blocks the vulnerable, open-source component. While I like WhiteSource’s performance, the UI is not user-friendly, and it has a learning curve. It would be better if the prioritization feature would include more than Java and JavaScript. Black Duck is a software composition analysis (SCA). We liked the ease of use and integration. It was really fast for scanning the repositories. The automatic scanning integrates greatly with DevOps and SecOps. Another feature we liked of Black Duck was the comprehensive knowledge base. When the software scans the repositories, it compares the identified inventory to the Black Duck knowledge base and lists vulnerabilities and license issues. The governance was superior in WhiteSource that’s why we ultimately chose it. Black Duck’s governance is poor. You don’t have a lot of control over which team is using what. The tenancy model is also kind of complex to understand. Their pay-as-you-use pricing model ends up being more costly too. Conclusions: Black Duck is well suited for organizations that need a tool that integrates seamlessly to a continuous integration cycle. Overall, WhiteSource is a complete solution because it detects and fixes vulnerabilities on the spot.
Netanya Carmi - PeerSpot reviewer
Content Manager at PeerSpot (formerly IT Central Station)
Oct 20, 2021
Which is better and why?
Related Articles
Netanya Carmi - PeerSpot reviewer
Content Manager at PeerSpot (formerly IT Central Station)
Apr 19, 2022
PeerSpot’s crowdsourced user review platform helps technology decision-makers around the world to better connect with peers and other independent experts who provide advice without vendor bias. Our users have ranked these solutions according to their valuable features, and discuss which features they like most and why. You can read user reviews for the Top 5 Software Composition Analysis (SCA...
Explore this product
Related Articles
Netanya Carmi - PeerSpot reviewer
Content Manager at PeerSpot (formerly IT Central Station)
Apr 19, 2022
Top 5 Software Composition Analysis (SCA) Solutions 2022
PeerSpot’s crowdsourced user review platform helps technology decision-makers around the world to...
Download Free Report
Download our free Mend Report and get advice and tips from experienced pros sharing their opinions. Updated: November 2022.
DOWNLOAD NOW
655,113 professionals have used our research since 2012.