Black Duck Hub

2017: Integration with the Visual Studio

On March 10, 2017 the Microsoft corporation and Black Duck company announced integration of Black Duck Hub into the platform of group development Team Foundation Server (TFS) and Visual Studio Team Services.

Screenshot of the software window, (2016)

Integration became possible by means of participation of Black Duck in the affiliate program on the product Visual Studio^[1].

The problem of search of the fragments of the external open code used in the project is executed by the Black Duck Visual Studio expansion: it automatically finds such code in TFS and TS bases that helps to avoid the license conflicts and in time to detect the known vulnerabilities. Earlier service was integrated with development tools of a number of IT suppliers IBM HPE (including), with the Visual Studio now.

Integration is implemented in cloud and local options.

2015: Black Duck Hub

For April 9, 2015 Black Duck Hub is the platform of security for software open source. It is focused on development teams and security experts for search and elimination of vulnerabilities of the free code.

The Black Duck Hub platform will help users to identify the Open Source components used in the code, to reveal the known vulnerabilities of security, to set priorities and diagrams of their elimination and to control this process.

Black Duck Hub functions as a part of build process, automatically detecting and identifying Open Source in process of its entering into a flow of the code and marking the libraries of an open source code having the known vulnerabilities. At risk assessment of applications and all their portfolio detailed information on vulnerabilities together with data on the licenses and risks assessments connected with activity of communities is used. Planning features and trackings of work give to security experts of a guarantee of elimination of crucial vulnerabilities.

Notes