Protect Your Assets
Showing results for 
Search instead for 
Do you mean 

Open Source Security is the focus for Fortify/Sonatype Integration

‎02-27-2014 11:45 AM - edited ‎07-07-2015 12:59 PM

On Monday HP announced a partnership with Sonatype to further reduce the risk introduced by open-source software. The integration with Sonatype's component life cycle management (CLM) analysis technology, allows HP Fortify on Demand 's customers to analyze their application's use of open source and 3rd party components, understand the application's components and composition including a "component bill of materials", and uncover know potential security, licensing, policy and quality problems. We  believe this represents the industry's first on-demand application security solution providing a combination of static, dynamic and open source risk analysis.



The open source risk analysis is complementary and can be accessed within the Fortify on Demand portal. To find out more about Sonatype, Fortify on Demand and the open source security solution visit 

0 Kudos
About the Author


Nov 29 - Dec 1
Discover 2016 London
Learn how to thrive in a world of digital transformation at our biggest event of the year, Discover 2016 London, November 29 - December 1.
Read more
Each Month in 2016
Software Expert Days - 2016
Join us online to talk directly with our Software experts during online Expert Days. Find information here about past, current, and upcoming Expert Da...
Read more
View all