WhiteSource and Codota Partner to Address Open Source Security Vulnerabilities - Before Code is Committed

July 21, 2019 Sivan Nahum

Enter content here

WhiteSource, the leader in open source security and license compliance management, and Codota, developer of the leading code AI platform, today announced their partnership, offering an Integrated Development Environment (IDE) plugin that alerts developers to open source vulnerabilities in their code in real time and provides suggested fixes within their IDE.

IDEs are the primary applications that developers use to author, modify, and debug software. As the industry shifts security and compliance responsibilities to developers, it is more important than ever for developers to be able to quickly address open source issues in their code. This integration will allow devs to do so without disrupting their workflow. 

Now, WhiteSource customers can easily install a plugin for IntelliJ, a popular IDE, and receive alerts on security issues when they reference a component with a known vulnerability. Notifications with all of the relevant details, including remediation recommendations for a quick and efficient fix, will appear in exactly the right context. Codota's function of sending developers specific, relevant code suggestions within the IDE will also be provided, to substantially improve accuracy and speed.

"The partnership with Codota allows us to take shift left one step further by alerting developers when they are using open source components with known vulnerabilities in real-time within their IDE UI before even committing the code," said Rami Sass, Co-Founder and CEO of WhiteSource. "It's important for us to provide developers with the tools that they need to manage open source security easily within their coding environment without sacrificing time or quality."

"Codota's fundamental mission is utilizing AI to boost developer productivity. We're excited to partner with WhiteSource to allow users to safely leverage open source resources and receive vulnerability alerts as the code is being written, well before any potential damage is done," said Dror Weiss, Co-Founder and CEO of Codota.

Previous Article
Denim Group and WhiteSource to help customers manage their open source vulnerabilities
Denim Group and WhiteSource to help customers manage their open source vulnerabilities

Next Article
WhiteSource Achieves Amazon Web Services DevOps Competency Status
WhiteSource Achieves Amazon Web Services DevOps Competency Status