![]() | TundeOgunkoya Consulting Partner, Cyber Security Delivery - Africa at DeltaGRiC Consulting |
![]() | Anonymous User UAS Innovation Group Lead at a computer software company |
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"Depending on the use case, the cost could range from $10,000 USD to $70,000 USD."
"The price is quite high because the behavior of the software during the scan is similar to competing products."
"The price is low. It's not an expensive solution."
"Black Duck is more suitable if you require a lot of licensing compliance. For smaller organizations, WhiteSource is better because its pricing policies are not really suitable for huge organizations."
"I think that we pay approximately $100 USD per month."
"The price is okay."
At Accurics™, we envision a world where organizations can innovate in the cloud with confidence. Our mission is to enable cyber resilience through self-healing as organizations embrace cloud native infrastructure. The Accurics platform self-heals cloud native infrastructure by codifying security throughout the development lifecycle. It programmatically detects and resolves risks across Infrastructure as Code before infrastructure is provisioned, and maintains the secure posture in runtime by programmatically mitigating risks from changes. Accurics enables organizations of all sizes to achieve cloud cyber resilience through free cloud-based and open source tools such as Terrascan™.
Black Duck is a comprehensive solution for managing security, license compliance, and code quality risks that come from the use of open source in applications and containers. Named a leader in software composition analysis (SCA) by Forrester, Black Duck gives you unmatched visibility into third-party code, enabling you to control it across your software supply chain and throughout the application life cycle.
GitLab is a single application with features for the whole software development and operations (DevOps) lifecycle.
Black Duck is ranked 4th in Software Composition Analysis (SCA) with 6 reviews while GitLab is ranked 5th in Software Composition Analysis (SCA) with 8 reviews. Black Duck is rated 7.4, while GitLab is rated 8.6. The top reviewer of Black Duck writes "Useful for determining the health of applications that contain open source components". On the other hand, the top reviewer of GitLab writes "Provides or mandates quantitative code into the Master". Black Duck is most compared with WhiteSource, Snyk, JFrog Xray, Sonatype Nexus Lifecycle and WhiteHat Software Composition Analysis, whereas GitLab is most compared with Microsoft Azure DevOps, Tekton, TeamCity, Bamboo and Checkmarx. See our Black Duck vs. GitLab report.
See our list of best Software Composition Analysis (SCA) vendors.
We monitor all Software Composition Analysis (SCA) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.