Compare CAST Application Intelligence Platform vs. WhiteSource

CAST Application Intelligence Platform is ranked 2nd in Software Development Analytics with 1 review while WhiteSource is ranked 2nd in Software Composition Analysis with 9 reviews. CAST Application Intelligence Platform is rated 5.0, while WhiteSource is rated 9.2. The top reviewer of CAST Application Intelligence Platform writes "Source code has to be fed. Used for controlling the technical debt and code quality". On the other hand, the top reviewer of WhiteSource writes "Using it, we can take some measures to improve things, replace a library, or update a library which was too old". CAST Application Intelligence Platform is most compared with SonarQube, Checkmarx and Micro Focus Fortify on Demand, whereas WhiteSource is most compared with Black Duck , SonarQube and Snyk.
Cancel
You must select at least 2 products to compare!
Most Helpful Review
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
Used for controlling the technical debt and code quality.It supports most programming languages.

Read more »

The reporting capability gives us the option to generate an open-source license report in a single click, which gets all copyright and license information, including dependencies.With the fix suggestions feature, not only do you get the specific trace back to where the vulnerability is within your code, but you also get fix suggestions.It gives us full visibility into what we're using, what needs to be updated, and what's vulnerable, which helps us make better decisions.Our dev team uses the fix suggestions feature to quickly find the best path for remediation.For us, the most valuable tool was open-source licensing analysis.The most valuable features are the reporting, customizing libraries "In-house, White list, license selection", comparing the products/projects, and License & Copyright resolution.Attribution and license due diligence reports help us with aggregating the necessary data that we, in turn, have to provide to satisfy the various licenses copyright and component usage disclosures in our software.The most valuable feature is the inventory, where it compiles a list of all of the third-party libraries that we have on our estate.

Read more »

Cons
It has very few plugins to access different code repositories, so source code has to be fed.Implementation could be made more simpler as it is complex.

Read more »

It would be nice to have a better way to realize its full potential and translate it within the UI or during onboarding.The UI is not that friendly and you need to learn how to navigate easily.WhiteSource Prioritize should be expanded to cover more than Java and JavaScript.The UI can be slow once in a while, and we're not sure if it's because of the amount of data we have, or it is just a slow product, but it would be nice if it could be improved.If anything, I would spend more time making this more user-friendly, better documenting the CLI, and adding more examples to help expand the current documentation.WhiteSource needs improvement in the scanning of the containers and images with distinguishing the layers.Some detected libraries do not specify a location of where in the source they were matched from, which is something that should be enhanced to enable quicker troubleshooting.We specifically use this solution within our CICD pipelines in Azure DevOps, and we would like to have a gate so that if the score falls below a certain value then we can block the pipeline from running.

Read more »

Pricing and Cost Advice
Information Not Available
Pricing is competitive.The version that we are using, WhiteSource Bolt, is a free integration with Azure DevOps.We are paying a lot of money to use WhiteSource. In our company, it is not easy to argue that it is worth the price. ​

Read more »

report
Use our free recommendation engine to learn which Software Development Analytics solutions are best for your needs.
389,722 professionals have used our research since 2012.
Ranking
Views
4,914
Comparisons
3,674
Reviews
1
Average Words per Review
129
Avg. Rating
5.0
Views
8,187
Comparisons
5,871
Reviews
6
Average Words per Review
552
Avg. Rating
8.7
Top Comparisons
Compared 21% of the time.
Compared 18% of the time.
Compared 11% of the time.
Also Known As
CAST AIP
Learn
CAST
WhiteSource
Overview

CAST Application Intelligence Platform (AIP), a result of over $130M in R&D investment over two decades, is an enterprise-grade software measurement and quality analysis solution designed to analyze multi-tiered, multi-technology applications for technical vulnerabilities and adherence to architectural and coding standards and then provide business relevant information to the IT organization through various dashboards and products built with end users in mind.

  • Application Analytics Dashboard (CAST AAD): Provides IT executives with accurate business relevant analytics to drive their organization
  • Application Engineering Dashboard (CAST AED): Provides engineering and QA teams with powerful code and system level structural flaw insight and remediation guidance
  • Enlighten: Delivers to developers a powerful deep understanding of their application’s structure
  • Architecture Checker: Gives architects a reliable, automated solution to enforce architectures that deliver stability and performance of their critical applications

CAST’s underlying system-level analysis technology assesses both the health of an application, as measured through numerous health factors, as well as specific structural and system-level defects that drive performance and stability issues providing true system level analysis.

The leading solution for agile open source security and license compliance management, WhiteSource integrates with the DevOps pipeline to detect vulnerable open source libraries in real-time.

It provides remediation paths and policy automation to speed up time-to-fix. It also prioritizes vulnerability alerts based on usage analysis.

We support over 200 programming languages and offer the widest vulnerability database aggregating information from dozens of peer-reviewed, respected sources.

Offer
Learn more about CAST Application Intelligence Platform
Learn more about WhiteSource
Sample Customers
Steria, T-Systems MMS, Atos Origin, Accenture, CapgeminiMicrosoft, Autodesk, NCR, Comcast, Nokia, Forgerock, indeed.com, GE digital, KPMG, LivePerson, Jack Henry and Associates
Top Industries
VISITORS READING REVIEWS
Software R&D Company45%
Government12%
Comms Service Provider8%
Insurance Company6%
VISITORS READING REVIEWS
Software R&D Company45%
Comms Service Provider11%
Insurance Company5%
Manufacturing Company5%
We monitor all Software Development Analytics reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.