What is our primary use case?
We use it to scan all of our open source projects, including all of our internal projects that people use.
We are about to roll it out to the whole company. Currently, we're only using it for open source projects, making sure people are scanning before they get the project approved.
How has it helped my organization?
FOSSA's compatibility with the wide range of developer ecosystem tools is great. It definitely saves us a lot of time and helps us figure out what security vulnerabilities are going on. Since we can't do it ourselves, we need FOSSA.
The solution provides contextualized, actionable intelligence that alerts us to compliance issues. The intelligence provides help with triage and remediation. The solution reacts really quickly to triage every question or anything going on that needs help.
What is most valuable?
It cuts the software engineers work a lot. Because if it is already approved and scanned, then they don't have to do it again.
The solution is holistic. Our legal teams and DevOps work hand in hand with it. For example, we have a legal team who is part of the setup for FOSSA.
What needs improvement?
I would like more customized categories because our company is so big. This is doable for them. They are still in the stages of trying to figure this out since we are one of their biggest companies that they support. I do feel like we are being heard and they are working on trying to give us what we asked for.
For how long have I used the solution?
I have been using it for two years.
What do I think about the stability of the solution?
FOSSA has been pretty stable. There haven't been websites down, etc. We are still building on top of it, which is great. We are adding more features which we didn't know that we needed. We are still getting feedback from developers at the company on what they need and what the solution can do for them.
My team of two does the maintenance for FOSSA.
What do I think about the scalability of the solution?
The scalability has been pretty perfect.
The majority of the user roles are software engineers. We have about 3,000 to 4,000 software engineers who will be using it. Currently, I think we have about 1,000 employees who probably have used it, or maybe a little less. We are about to roll it out to the whole company, so that will be hitting the majority of all our engineers.
Right now, it's already in the system. We just haven't yet announced that it is in the system for use.
FOSSA enables us to deploy software at scale.
How are customer service and technical support?
The technical support is really good. They are very persistent and support what we need by answering all of our questions. They answer right away.
Which solution did I use previously and why did I switch?
We did not use another solution previously.
How was the initial setup?
The initial setup was straightforward. It was very easy in order to have their platform installed into our company-wide platform for internal users. They gave us what they needed, and we gave them what they needed.
Our deployment took about a week.
For our implementation strategy, we had to figure out what was needed in order for FOSSA to be on our platform along with the needs to onboard an external platform into our system.
What about the implementation team?
The deployment required three or four people: the IT team, the FOSSA team. and myself. My experience with the FOSSA team with great. The deployment went smoothly. They were there for 100 percent life support. Anything that was needed was found and triaged.
What was our ROI?
It takes probably a week to get everything scanned and approved before you can use it. Therefore, we are probably seeing about a couple of days or weeks of times saving per code or project for this solution. This is because it would take some time to scan, have it looked at, reviewed, and get approval.
It improves productivity, saving a lot of time for our software developers.
What other advice do I have?
If this is the type of product that you're looking for, they are one of the best products that you can use. The support team has just been amazing, and it helps us to have a great support team from FOSSA. They are there to triage and answer all our questions which come up by using their product.
I am not a daily user. I do more of the program management side of setting it up for everyone. I don't actually use it on a day-to-day type of basis.
I would rate the solution a 10 out of 10.