Adding to WhiteSource’s existing GitLab integration, the enhancement will help programmers detect and remediate vulnerable code earlier without leaving the GitLab CI/CD pipeline
San Francisco – January 14, 2020 – WhiteSource, the leader in open source security and license compliance management, announced today enhanced GitLab integration for the company’s developer-focused offering, WhiteSource for Developers. This enhancement adds to WhiteSource’s existing GitLab integration, giving developers alerts on open source components with known vulnerabilities earlier in the software development lifecycle, and providing clear, actionable remediation suggestions before the code ever leaves their hands. With support for the GitLab Security Dashboard, a capability available for GitLab Ultimate users, security pros can gain visibility into unresolved vulnerabilities earlier than ever and GitLab users can gain additional insight from WhiteSource.
“With this new integration, developers can more easily find and fix vulnerable code without leaving the GitLab CI/CD pipeline,” said David Habusha, VP Product Management at WhiteSource, “while security professionals can leverage their WhiteSource investment to advance their shift left and further automate risk policies within the Software Development Lifecycle (SDLC).”
“We are excited to have WhiteSource as a part of GitLab’s partner program to complement our security capabilities,” said Brandon Jung, VP of Alliances at GitLab. “GitLab gives customers earlier visibility to software vulnerabilities and actionable remediation. This integration furthers our commitment to provide our customers a seamless DevSecOps experience.”
WhiteSource integration with GitLab is available with WhiteSource for Developers. Additional information regarding this integration can be found here.
About WhiteSource
WhiteSource is the leader in continuous open source security and license compliance management. Its vision is to empower businesses to develop better software by harnessing the power of open source. Industry leaders like Microsoft, IBM, and hundreds more trust WhiteSource to secure and manage the open source components in their software. For more information, please visit www.whitesourcesoftware.com
Redis is taking it in the chops, as both maintainers and customers move to the Valkey Redis fork.
GitLab Duo Chat is a natural language interface which helps generate code, create tests and access code summarizations.
Expect attacks on the open source software supply chain to accelerate, with attackers automating attacks in common open source software…
The emergence of low/no-code platforms is challenging traditional notions of coding expertise. Gone are the days when coding was an…
Datadog today published a State of DevSecOps report that finds 90% of Java services running in a production environment are…
Linux dodged a bullet. If the XZ exploit had gone undiscovered for only a few more weeks, millions of Linux…