Protect Your Assets
Showing results for 
Search instead for 
Do you mean 

Open Source Security is the focus for Fortify/Sonatype Integration

CaroleLoomis ‎02-27-2014 11:45 AM - edited ‎07-07-2015 12:59 PM

On Monday HP announced a partnership with Sonatype to further reduce the risk introduced by open-source software. The integration with Sonatype's component life cycle management (CLM) analysis technology, allows HP Fortify on Demand 's customers to analyze their application's use of open source and 3rd party components, understand the application's components and composition including a "component bill of materials", and uncover know potential security, licensing, policy and quality problems. We  believe this represents the industry's first on-demand application security solution providing a combination of static, dynamic and open source risk analysis.

 

 

The open source risk analysis is complementary and can be accessed within the Fortify on Demand portal. To find out more about Sonatype, Fortify on Demand and the open source security solution visit  http://www.sonatype.com/fortify 

0 Kudos
About the Author

CaroleLoomis

Events
27 Feb - 2 March 2017
Barcelona | Fira Gran Via
Mobile World Congress 2017
Hewlett Packard Enterprise at Mobile World Congress 2017, Barcelona | Fira Gran Via Location: Hall 3, Booth 3E11
Read more
Each Month in 2017
Online
Software Expert Days - 2017
Join us online to talk directly with our Software experts during online Expert Days. Find information here about past, current, and upcoming Expert Da...
Read more
View all