New Partnership Results in Powerful Code Analysis Platform that Boosts an Organization’s Application Security Regardless of Whether Code Is Developed In-House or Uses Open Source Components
Checkmarx, a global leader in application security testing and WhiteSource, the continuous open source component management solution, today announced a partnership, providing Checkmarx users with a comprehensive Open Source Analysis (OSA) solution. The new capability adds full visibility of the open source components used by developers. It reports known security vulnerabilities contained in the open source code and suggests available fixes. It also highlights licensing and compliance issues in any used open source components.
The new version of Checkmarx’s application security testing platform combines best-of-breed source code analysis and open source component analysis in a single product. Checkmarx’s platform is the only one to provide a comprehensive solution that covers all code security aspects in all major coding languages and is available both on-premise and on-demand.
“Checkmarx is delighted to be working with WhiteSource to offer a complete solution for our users. We both share the same approach of creating solutions developers actually want to use,” said Emmanuel Benzaquen, CEO of Checkmarx. “Checkmarx’s platform fits seamlessly with the Software Development Lifecycle to discover issues and vulnerabilities in the code. The new capability adds Open Source Analysis (OSA) to our current proprietary code analysis and ensures such vulnerabilities are detected before they are released into production”.
Checkmarx customers can now benefit from the strengths of both companies with a single Application Security Testing platform scanning both proprietary and open source code to maximize developer adoption by seamlessly integrating into the development lifecycle.
“In an age when companies are heavily using open source components, it is no longer sufficient to just scan one’s own code. OWASP A9 requirement emphasizes this issue.” said Rami Sass, CEO and Co-Founder of WhiteSource. “The addition of WhiteSource’s technology makes the Checkmarx solution complete, providing customers with full coverage in a single product”.
Checkmarx develops solutions used by developers and security professionals to identify and fix vulnerabilities in web and mobile applications early in the development lifecycle. It provides an easy and effective way for organizations to automate security testing within their Software Development Lifecycle (SDLC) which systematically eliminates software risk before applications are released. Amongst the company's 1,000 customers are 5 of the world's top 10 software vendors and many Fortune 500 and government organizations, including SAP, Samsung, Salesforce.com, Coca Cola and the US Army. For more information about Checkmarx, visit http://www.checkmarx.com or follow us on twitter: @checkmarx
WhiteSource allows engineering, security and compliance officers to effortlessly manage the use of open source components in their software, allowing developers to focus on building great products. WhiteSource fully automates all open source management needs: component detection, security vulnerability alerts, license risk and compliance analysis along with policy enforcement and new version alerts. Designed for engineering executives and security officers, a complete suite of control, reporting and management tools make managing open source truly effortless. For more information about WhiteSource, visit whitesourcestg.wpengine.com or follow us on twitter: @whtsrc.