External reviews
110 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Automating software IPR checking
What do you like best about the product?
The offering is delivered as SaaS and has an intuitive and easy to use interface which provides rapid access to key information on IPR and security vulnerabilities in an easy to understand graphical format. the wide range of reporting options allow potential issues to be captured and explored in more detail.
What do you dislike about the product?
Configuration of the scanning element of the offering requires some practice and there are a large number of parameters to master.
What problems is the product solving and how is that benefiting you?
We have transitioned from a manual process of IPR audit to a fully automated and integrated one which saves considerable time and allows experts to concentrate in areas the specifically require human intervention. This greatly reduces the exposure to to potential IPR liability issues for the organisation.
Whitesource Reseller (Australia and New Zealand
What do you like best about the product?
I love the software and the benefits it provides to me, and to my clients. I have worked with Whitesource for the past year and I really love the software and the experience dealing with Whitesource the company.
What do you dislike about the product?
At present, I really can't think of anything that I dislike about Whitesource the company OR Whitesource the software solution.
What problems is the product solving and how is that benefiting you?
I am assisting my clients to solve their business issues with regard to use of Open Source, such as inventory, code quality, licensing concerns, and potential security vulnerabilities.
Recommendations to others considering the product:
Try it. If it works for you, I recommend you purchase a subscription.
WhiteSource is facilitating our life
What do you like best about the product?
With WhiteSource, the open source governance is fully automated.
We just have to add their plugin in our CI tool and our Open Source dependencies are now managed with WhiteSource.
Compare to our previous solution (manual and painful) it's a huge win.
We just have to add their plugin in our CI tool and our Open Source dependencies are now managed with WhiteSource.
Compare to our previous solution (manual and painful) it's a huge win.
What do you dislike about the product?
We would like to export our reports with the PDF format, but this feature is missing for the moment.
Except that, WhiteSource is a very good software.
Except that, WhiteSource is a very good software.
What problems is the product solving and how is that benefiting you?
Before using WhiteSource, we were using a manual solution to scan our Open Source dependencies.
With WhiteSource, we now have a solution to do a continuous analysis of our Open Source dependencies.
We are spending less time on this subject and WhiteSource is able to generate all the reports we need.
With WhiteSource, we now have a solution to do a continuous analysis of our Open Source dependencies.
We are spending less time on this subject and WhiteSource is able to generate all the reports we need.
In no time you are ready to scan your open source libraries
What do you like best about the product?
* As a customer we got the full focus of Whitesource team
* Whitesource is very skilled in understanding the needs of its customers
*The RFP onsite was very successfull, in no time we had a full idea of their product (it allmost felt like we were ready to start using it
*The very customer centric approach at all levels
*High quality of the staff, they know exactly what they are doing.
* Whitesource is very skilled in understanding the needs of its customers
*The RFP onsite was very successfull, in no time we had a full idea of their product (it allmost felt like we were ready to start using it
*The very customer centric approach at all levels
*High quality of the staff, they know exactly what they are doing.
What do you dislike about the product?
The initial request for information was rather poorly documented. Also the level of detail provided to our technical questions was sometimes too low.
What problems is the product solving and how is that benefiting you?
Using the tool we will have a clear view on where open source code is used in our systems. We'll have a view on the vulnerabilities and the licence conflicts.
Recommendations to others considering the product:
you'll meet a great product that in the first place is brought and supported by a great team of professionals
Using Mend integration to Continuous Integration system
What do you like best about the product?
The API, The Unified agent JAR and the service-oriented attitude from Mend engineering and success managers
What do you dislike about the product?
Performance in huge projects (might be solved with workarounds) .
The CLI is running as JAVA jar only.
The dashboard UX is bad. Really need to improve it
The CLI is running as JAVA jar only.
The dashboard UX is bad. Really need to improve it
What problems is the product solving and how is that benefiting you?
Keeps us and our customers safe from legal and security aspects
Simple tool for more visibility around our libraries (versions, security vulnerabilities and bugs)
What do you like best about the product?
that it is a hosted solution and you don't have to take care yourself about the setup or data
suggests versions of the oudated or insecure library
shows also critical and blocking bugs known in the libraries
very good dashboard with an overview of what is going on
the tool lists also the licenses of the libraries which is very important if you use open source libraries in your commercial product, which might forces you to open source your code as well (LGPL)
suggests versions of the oudated or insecure library
shows also critical and blocking bugs known in the libraries
very good dashboard with an overview of what is going on
the tool lists also the licenses of the libraries which is very important if you use open source libraries in your commercial product, which might forces you to open source your code as well (LGPL)
What do you dislike about the product?
the web ui has a lot of animated "flashy" things which I don't like, I prefer more simple html to visualize the data
the mails regarding news could be more simple or summarized
sometimes there are false-positives listed in the security vulnerabilities because the tool expects a higher version to be fixed, but instead there is a other (lower) version which also fixes the problem, but in such cases the support is very helpful and immediately checks the issue
the mails regarding news could be more simple or summarized
sometimes there are false-positives listed in the security vulnerabilities because the tool expects a higher version to be fixed, but instead there is a other (lower) version which also fixes the problem, but in such cases the support is very helpful and immediately checks the issue
What problems is the product solving and how is that benefiting you?
with whitesource we have now numbers of how many libraries are outdated or vulnerable
this visibility makes it easier to argue that library needs to be updated
but the main purpose of whitesource is to see security vulnerabilities
the major benefit is that with whitesource we have a list of libraries with
- current version
- newest version
- vulnerabilities
- known bugs
this visibility makes it easier to argue that library needs to be updated
but the main purpose of whitesource is to see security vulnerabilities
the major benefit is that with whitesource we have a list of libraries with
- current version
- newest version
- vulnerabilities
- known bugs
Recommendations to others considering the product:
simply use it, because I guess you don't have any monitoring on your libraries yet
Great product and great support!
What do you like best about the product?
The online interface looks nice and is easy to use and intuitive. WhiteSource allows us to easily see all of our 3rd-party Java libraries at a glance and quickly tell which ones we need to fix- whether they conflict with our license, have security holes, or need to be updated. What used to be a manual process (as in no one ever really did it..) is now a nice automated process.
What really shines is their support- they are quick to meet with us and solve any issues we have. Even during the evaluation period, they made improvements to the product in areas we were concerned. It always pays to have awesome customer support. I know if we run into any other issues that they'll be quick to fix them.
What really shines is their support- they are quick to meet with us and solve any issues we have. Even during the evaluation period, they made improvements to the product in areas we were concerned. It always pays to have awesome customer support. I know if we run into any other issues that they'll be quick to fix them.
What do you dislike about the product?
WhiteSource has trouble with C++ libraries, but its not a deal breaker. It just requires more manual work. However, I expect it to get better as we get everything set up+ I know the WhiteSource team is continuing to improve this part.
Also, I would appreciate them improving the Jenkins plugin. It doesn't support variable replacement in the includes/excludes, so I was forced to use the command-line tool. The WhiteSource team mentioned that they would look into fixing it.
Also, I would appreciate them improving the Jenkins plugin. It doesn't support variable replacement in the includes/excludes, so I was forced to use the command-line tool. The WhiteSource team mentioned that they would look into fixing it.
What problems is the product solving and how is that benefiting you?
We needed to go through all our 3rd-party libraries to make sure we aren't going against our license or company policy. We also wanted to be able to fix security vulnerabilities before they make it into our product. Furthermore, in the future, we want to continue to ensure that future added libraries do not cause issues. Recently found out that they have a simple workflow for approving libraries, so that is a nice bonus.
Great Product to identify OpenSource violations & Vulnerabilities
What do you like best about the product?
Ease of use
Ease of integration
Meaningful reports
Customer Support
Ease of integration
Meaningful reports
Customer Support
What do you dislike about the product?
Documentation: Need more documentation
Support for new file types
Support for new file types
What problems is the product solving and how is that benefiting you?
Identifying and remediating Open Source we use in the product
Fixing Vulnerabilities
Getting Compliant
Fixing Vulnerabilities
Getting Compliant
showing 51 - 58