von WhiteSource Software

4 / 5 5 Bewertungen

Wer nutzt diese Software?

Software companies engineering teams.

Durchschnittliche Bewertung

5 Bewertungen
  • Gesamt 4 / 5
  • Benutzerfreundlichkeit 3.5 / 5
  • Kundenservice 4.5 / 5
  • Funktionen 3 / 5
  • Preis-Leistungs-Verhältnis 1 / 5


  • Startpreis $4000
  • Kostenlose Version Nein
  • Kostenlose Testversion Ja
  • Einsatz Cloud, SaaS, Web
  • Training Live Online
  • Kundenbetreuung Support während der Geschäftszeiten

Angaben zum Hersteller

  • WhiteSource Software
  • http://www.whitesourcesoftware.com/
  • Gegründet 2010

Über WhiteSource

WhiteSource becomes part of your software development lifecycle (SDLC) and automates the entire process of open source components selection, approval, and management, including finding and fixing vulnerable components.

We provide software development and security teams full control and visibility over their open source usage and helps them drive open source adoption.

WhiteSource Funktionen

  • Alarmfunktion / Benachrichtigungen
  • Audit Planning
  • Aufgabenmanagement
  • Compliance Management
  • Dashboard
  • Formularverwaltung
  • Mobiler Zugriff
  • Problemmanagement
  • Risikobewertung
  • Verfolgen von Vermögensanlagen
  • Workflow-Management
  • Kopierschutz
  • Lizenz-Nachverfolgung
  • Lizenzübertragung
  • Product Activation
  • Test-Lizenz
  • Verwaltung von Knoten(punkten)
  • Berichterstattung / Analyse
  • Code-Refactoring
  • Datenmodellierung
  • Debuggen
  • Einsatz-Management
  • Kompatibilitätstests
  • Mobile Entwicklung
  • No-Code
  • Quellkontrolle
  • Software-Entwicklung
  • Web-App-Entwicklung
  • Werkzeuge zur Zusammenarbeit
  • Zugriffskontrollen/Berechtigungen

Empfohlene Produkte

Die hilfreichsten Reviews für WhiteSource

Tons of false positives, prepare to spend hours fixing it manually

Mit Google übersetzen Bewertet am 7.6.2018
Don T.
VP Software Development
Verwendete die Software für: 1-5 Monate
Quelle des Nutzers 
3 / 5
3 / 5
Eigenschaften & Funktionalitäten
4 / 5
1 / 5
Wahrscheinlichkeit der Weiterempfehlung:
Unwahrscheinlich Äußerst wahrscheinlich

Kommentare: After much manual configuration, a nicely formatted output that looks reputable. I could have just made my own in excel a lot faster.

Vorteile: Fast, quick reviews of your code. They do a good job of putting all the relevant reports and dashboards in front of you quickly. Once you manually fix everything, it can look really good.

Nachteile: The false positives are awful. I had to spend hours and hours manually fixing everything it mis-identified - dozens of libraries and thousands of source files. If you use a library not in its database... too bad. You can make a support request and wait for them to enter it for you, whenever they get around to it.
The search is pretty awful. There is some kind of syntax to using it but when I asked our account rep, she couldn't give me any documentation on it. You will frequently see results like "openssl-v0_9_8" in your search, but if you type "openssl" it will vanish and not come up. Don't ever both trying to search for a version, it doesn't work. This results in a lot of time scrolling through very large lists. Naming schemes are random and follow no established pattern.
For a good half of all libraries, they have not assigned a license. Guess who gets to go google search them all? You, the user! Isn't the point of this tool to help me identify the licensing?
UI navigation is challenging. Back button will take you to a different place than you were almost every time. You'll love the dashboard... because you have to go back to it roughly every 5 minutes and start over.
No great system for notes/todos/reminders. When you have to fix 60 libraries, it's hard to remember what you want to do with each one.

FOSS lifecycle management with Whitesource

Mit Google übersetzen Bewertet am 10.11.2015
Udi M.
System Architect & FOSS Evaluator
Quelle des Nutzers 
4 / 5
Eigenschaften & Funktionalitäten
5 / 5

Kommentare: Using Whitesource to manage the process of analysing FOSS for a large product with hundreds of opensource dependencies.
Makes life much easier and helps you cover all dependencies much more accurately.
Some processes are still a bit course (though improved dramatically over the past 18 months)
Refresh performance might be a bit slow when there are very large dependency lists.
Best product out there for FOSS lifecycle management

Lies weitere Bewertungen