Protect Your Assets
Showing results for 
Search instead for 
Do you mean 

Open Source Security is the focus for Fortify/Sonatype Integration

‎02-27-2014 11:45 AM - edited ‎07-07-2015 12:59 PM

On Monday HP announced a partnership with Sonatype to further reduce the risk introduced by open-source software. The integration with Sonatype's component life cycle management (CLM) analysis technology, allows HP Fortify on Demand 's customers to analyze their application's use of open source and 3rd party components, understand the application's components and composition including a "component bill of materials", and uncover know potential security, licensing, policy and quality problems. We  believe this represents the industry's first on-demand application security solution providing a combination of static, dynamic and open source risk analysis.

 

 

The open source risk analysis is complementary and can be accessed within the Fortify on Demand portal. To find out more about Sonatype, Fortify on Demand and the open source security solution visit  http://www.sonatype.com/fortify 

0 Kudos
About the Author

CaroleLoomis

Events
Each Month in 2016
Online
Software Expert Days - 2016
Join us online to talk directly with our Software experts during online Expert Days. Find information here about past, current, and upcoming Expert Da...
Read more
Sep 30
Seattle, WA
OpenStack Days Seattle
OpenStack Days Seattle, September 30, is the largest gathering of OpenStack users and prospective users in the Pacific Northwest region.
Read more
View all