Black Duck Reviews

Filter by:Reset all filters
Filter Unavailable
Company Size
Filter Unavailable
Job Level
Filter Unavailable
Filter Unavailable
Filter Unavailable
Order by:
  • Date
  • Highest Rating
  • Lowest Rating
  • Review Length
Consulting Partner, Cyber Security Delivery - Africa at DeltaGRiC Consulting
May 30 2019

How has it helped my organization?

This solution helps our customers to understand what really lies in their application. In terms of the open source components, it can show the dependencies that other components are relying on, which you don't see. For example, if your application is packaged with other stuff, it would help to pull… more»

What needs improvement?

I would like to see more integration with other solutions, such as IntelliJ IDEA.

What's my experience with pricing, setup cost, and licensing?

The pricing works either by the number of users or by code size. In the case of code size, they give you unlimited users. For example, if you have two thousand developers but you want a code size of 20GB, then that is what you get. If, however, you have forty developers and a lot of projects then… more»

What other advice do I have?

This is a good solution. My advice to anybody interesting in implementing it is to be clear in their mind whether they want to go on a user-based model, or they want to do a code-based model. It can get tricky if your development team is growing rapidly. Maybe you started off with five developers… more»
Real User
Technology Leader/ Open Source Compliance and Risk expert at a comms service provider with 10,001+ employees
Jan 19 2020

What is most valuable?

I like the fact that the product auto analyzes components. In comparison to Protecode where you're given a suggestion and you have to manually choose the correct one, Black Duck analyzes automatically. However, there is a degree of error, possibly around 5%.

What needs improvement?

In terms of improvement, there are several areas. The scanner client is limited by the size of software it can handle. If you're scanning software larger than five gigs, it needs to be split and is separated into sub-scans. If you want the status on a certain scan, you can't get it automatically and… more»

What's my experience with pricing, setup cost, and licensing?

There are some features that cost extra but we don't use them because I'm not sure there's added value. The product is not cheap. There are several methods of payment - by product, by scale, or by code-based size. I suggest those buying Black Duck know their code size in relation to the code size… more»

What other advice do I have?

The set up is on-premises but the knowledge base is through the cloud. As mentioned, it's a hybrid solution. The main difference between Black Duck and other solutions is the way the software identifies the open source. If it's being used out of the box and there's no need for any changes or… more»


User Assessments By Topic About Black Duck

Find out what your peers are saying about Black Duck vs. WhiteSource and other solutions. Updated: February 2020.
397,082 professionals have used our research since 2012.

Black Duck Questions

What is Black Duck ?

Black Duck Hub is the leading platform for automated license compliance and open source security. Black Duck Hub helps security and development teams identify and mitigate open source-related risks across their application portfolio, while incorporating the functionality of Protex license compliance.

Also known as
Blackduck Hub, Black Duck Protex, Black Duck Security Checker
Black Duck customers

CopperLeaf, ScienceLogic, Dynatrace, ClickFox, Siemens, Noser Engineering AG