WhiteSource Room for Improvement

VP R&D at a computer software company with 51-200 employees
The UI is not that friendly and you need to learn how to navigate easily. It also doesn’t run as smoothly as I would want or expect, and I believe it requires some improvements. That said, the Success team is very attentive and does reply and answer related matters quite fast. Currently, effective vulnerabilities are only available in two languages, which is great, but I would be very happy to see more languages. It does cover most of our libraries, but we do have other languages in use. More coverage on that aspect would be helpful. View full review »
User at a tech vendor with 1,001-5,000 employees
Places in need of improvement are: * Some detected libraries do not specify a location of where in the source they were matched from, which is something that should be enhanced to enable quicker troubleshooting. * Manual uploads of "wsjson" files can only be done by a global admin. Product administrators should be given this right for uploading files to their products/projects. * Better support for proxies is needed when running the unified file agent behind a proxy. It can be made to work, but the Java proxy config and cert trust for MitM traffic inspection are very painful to set up. View full review »
Co Founder at a consumer goods company with 11-50 employees
WhiteSource Prioritize should be expanded to cover more than Java and JavaScript. We are currently using WhiteSource Prioritize for Java and it cuts our vulnerability alerts by almost 90%. However, Prioritize doesn't cover python or other languages at this point and our developers are required to deal with many open source security alerts. The problem is that now our developers are aware that most open source security alerts are not impacting the security of their applications and it's harder to get their cooperation. We are waiting for WhiteSource to announce support ifor Python and other languages. View full review »
Learn what your peers think about WhiteSource. Get advice and tips from experienced pros sharing their opinions. Updated: December 2020.
455,164 professionals have used our research since 2012.
Alon Michaeli
Founder & CEO at Data+
The changes that we would like to see are mostly usability issues. The UI can be slow once in a while, and we're not sure if it's because of the amount of data we have, or it is just a slow product, but it would be nice if it could be improved. The UI is also too crowded. I believe that less information, or a different data summary, can be more readable. I know this is something they’re currently working on, but not sure where it stands. Reporting could be easier, as it does not export filtered-down lists. It would be really valuable to add the ability to customize options in the reports. View full review »
VP R&D at a tech services company with 11-50 employees
The agent usage was not as smooth as the online experience. It lacks in terms of documentation and the errors and warnings it produces are not always very clear. We were able to get it up and running in a short while by getting help from support, which was very approachable and reliable. If anything, I would spend more time making this more user-friendly, better documenting the CLI, and adding more examples to help expand the current documentation. I would also like to get better integration with Google Docs. View full review »
Project Manager at a wellness & fitness company with 11-50 employees
It would be nice to have a better way to realize its full potential and translate it within the UI or during onboarding. View full review »
Daniel Hall
Technical Architect at Dwr Cymru Welsh Water
We specifically use this solution within our CICD pipelines in Azure DevOps, and we would like to have a gate so that if the score falls below a certain value then we can block the pipeline from running. This would give us some sort of automated assurance. This is probably the feature that we'd most like to see. View full review »
DevOps CI/CD Team Lead at a computer software company with 10,001+ employees
The dashboard UI and UX are problematic. This solution looks like a 1995 web site and it's very hard to understand what the issue is and why it failed. View full review »
Sr. Director, Cloud Operations at a computer software company with 1,001-5,000 employees
It would be good if it can do dynamic code analysis. It is not necessarily in that space, but it can do more because we have too many tools. Their partner relationship support is a little bit confusing. They haven't really streamlined the support process when we buy through a reseller. They should improve their process. View full review »
Senior Productization Specialist at a tech services company with 51-200 employees
WhiteSource needs improvement in the scanning of the containers and images with distinguishing the layers. This solution needs better support and customer service. View full review »
Learn what your peers think about WhiteSource. Get advice and tips from experienced pros sharing their opinions. Updated: December 2020.
455,164 professionals have used our research since 2012.