Truemag

  • Subscribe
    • New Subscription
    • Account Updates
    • Customer Service
  • News & Events
    • News
    • Events
  • Advertise
    • Media Kit
    • Reprints
    • Contacts
  • Editorial
    • Podcasts
    • Current Articles
    • Digital Editions
    • eNewsletter
    • Editor’s Desk
    • Edit Calendar
    • Contacts
  • Buyers Guide
    • Search
    • Sponsor Index
    • Vendor Update
  • Annual Software Ranking
    • Ranking Form
    • Annual Software Ranking
    • 2018 Software Ranking File Package

Black Duck Releases Free Vulnerability Plugin for Open Source Software

06.23.2015

Black Duck Software, the leading OSS Logistics solutions provider enabling the secure management of open source code, today announced the release of the free Black Duck Vulnerability Plugin for Jenkins. The new plugin extracts dependency data from the Jenkins build and automates the discovery of open source software used within projects while detecting known security vulnerabilities.

According to the National Vulnerability Database, more than 4,000 new vulnerabilities are reported in open source software each year, and thousands of these known vulnerabilities go unnoticed within a typical enterprise. By leveraging Black Duck’s KnowledgeBase, the new free plugin streamlines the usually-tedious process of identifying open source components to instantly provide vulnerability and license data on more than one million open source projects. Identifying the vulnerabilities within each build means mitigating risks early in the software development cycle.

“Continuous delivery increases the frequency of everything in the software development workflow and vulnerability detection is no exception,” said Jenkins Founder and CloudBees CTO Kohsuke Kawaguchi. “The Black Duck Vulnerability Plugin for Jenkins finds vulnerabilities early in the software development lifecycle, thereby accelerating the delivery of better quality code.”

“Black Duck offers developers and build engineers immediate visibility into vulnerabilities found in their open source software,” said Bill Ledingham, Chief Technology Officer and EVP of Engineering, Black Duck Software. “With this powerful data, teams can now focus on remediating their open source code before deploying to production.”

Black Duck’s Vulnerability Plugin also generates an easy-to-share .PDF report enabling development teams to work together with security teams. The plugin is free and runs for an unlimited amount of time.

blackducksoftware.com

Jun 23, 2005Cassie Balentine
Red Hat and Samsung Form Strategic AllianceLiferay Collaborates with Red Hat
Product Centrics
TrueNAS Open Source Storage Platform brings Full Windows ACL Support to Linux

Fully featured Windows file system ACLs are well supported in TrueNAS 12.0 (CORE and Enterprise), but not generally supported by Linux. Thanks to some innovation, and sweat from the iXsystems engineering team, TrueNAS SCALE 21.08...

Driving Successful Digital Transformation Initiatives in 2022

Well, the end of the year is the perfect time to reflect on all the past year's activities and plan for the coming year. As we plan for 2022, one thing...

Recovery Platforms

Established in 2013, Imanis Data, previously Talena...

Data Driven Efficiency

Founded in 2003, Tableau is a public software company...

Updated Hitachi CRM

Building Product Manufacturers (BPM) require...

Quick Links
Untitled Document
SW500 SW500 SW500 SW500 SW500
2022 © Rockport Custom Publishing, LLC