Black Duck Pros and Cons

Black Duck Pros

TundeOgunkoya
Consulting Partner, Cyber Security Delivery - Africa at DeltaGRiC Consulting
It highlights what the developers have done, and it shows the impact from an intellectual property point of view.
View full review »
Zvika-Ronen
Chief Technology Officer (CTO) at FOSSAWARE
I like the fact that the product auto analyzes components.
View full review »
Costas-Voliotis
Co-Founder CTO/CPO at Source Code Inspection
The knowledge base and the management system are the most valuable features of Black Duck Hub. It has a very helpful management environment. They offer an editor where we can check the discovered license, which is retrieved from their knowledge base. They have a huge knowledge base build over the years. It gives you some possibilities, such as this license with possibility A could cause a vulnerability issue or a potential breach.
View full review »
Learn what your peers think about Black Duck. Get advice and tips from experienced pros sharing their opinions. Updated: January 2021.
455,164 professionals have used our research since 2012.
reviewer1421445
Former SVP at a manufacturing company with 5,001-10,000 employees
The solution works well on Mac products.
View full review »
reviewer1361340
Project Lead at a manufacturing company with 10,001+ employees
The stability is okay.
View full review »
RaviShankar
Lead Product Enginner at Harman International Industries, Incorporated
The most valuable feature is the vulnerability scanning, and that it's easy to use.
View full review »

Black Duck Cons

TundeOgunkoya
Consulting Partner, Cyber Security Delivery - Africa at DeltaGRiC Consulting
I would like to see more integration with other solutions, such as IntelliJ IDEA.
View full review »
Zvika-Ronen
Chief Technology Officer (CTO) at FOSSAWARE
The scanner client is limited by the size of software it can handle.
View full review »
Costas-Voliotis
Co-Founder CTO/CPO at Source Code Inspection
It is a cloud-only solution. In many cases, companies like to evaluate the software, but they're very reluctant to give you the software. It would be great if they could offer an on-prem component that could be used to scan the code and then upload the discovery results to the cloud and get all the information from there, but there is no such possibility. You have to upload the code to the Black Duck cloud system. Of course, they have a strong legal department, and they offer some configuration, but it is never enough. You have to give the code, which is a drawback. In modern designs like Snyk or FOSSA, you don't need to give the code. It requires more native integration with Coverity because they go together technically. You need both Coverity and Black Duck Hub. It would be really helpful for companies working in this space to get a combined offer from the same company. They should provide an option to buy Coverity for an additional fee. Coverity combined with Black Duck Hub will provide a one-step analysis to get everything you need and a unified report. It would be really great to be able to connect Black Duck Hub with Coverity unified reports.
View full review »
Learn what your peers think about Black Duck. Get advice and tips from experienced pros sharing their opinions. Updated: January 2021.
455,164 professionals have used our research since 2012.
reviewer1421445
Former SVP at a manufacturing company with 5,001-10,000 employees
We're not too sure about the extension of the firewall. It never shows up in the Hub.
View full review »
reviewer1361340
Project Lead at a manufacturing company with 10,001+ employees
It needs to be more user-friendly for developers and in general, to ensure compliance.
View full review »
RaviShankar
Lead Product Enginner at Harman International Industries, Incorporated
The initial setup could be simplified. It was somewhat complex.
View full review »
Learn what your peers think about Black Duck. Get advice and tips from experienced pros sharing their opinions. Updated: January 2021.
455,164 professionals have used our research since 2012.