54 Black Duck Testimonials

Industry
Company Size
15 per page
  • 15
Reset
  • “In 2014, when I came on board to manage the AppSec awareness and training program, we were looking at training for around 12,000 employees spread over 54 countries."

  • “It is very important to understand each team’s skills and take a down-to-earth approach. For example, sales and those who are not acquainted with software may not even understand what open source is, so it has to be explained. It is also very important not to just end up emphasizing risks, because that can discourage the use of OSS. While developer support is essential, if you can also involve marketing, sales, and call center agents in training activities, you can propel OSS governance.”

  • “With Synopsys Coverity and Black Duck solutions, we were able to achieve our safety and quality standard certifications.”

  • “Black Duck was the only solution that provided everything we wanted. Black Duck analysis speeds are very fast, and vulnerability information is distributed quickly.”

  • "The real game-changer for us in choosing Black Duck was how it allowed us to not only look into our code base and establish a clean bill of materials, including all OSS components, but also that it allowed us to encourage and support greater use of open source in current and future projects."

  • Black Duck has helped us understand our overall security status, and find and fill security holes."

  • “From being concerned that Coverity would slow development or flood us with false positives, we think of Coverity as if it were a member of the software team.”

  • “We commissioned Synopsys consultants to help us develop an application security test orchestration solution that looks at the significance of code changes our developers make and the risk profile of the application they’re working on. In essence, we wanted to build an automated traffic cop to direct our security activities. What we now call Intelligent Orchestration moves those activities in the right direction without causing traffic snarls.”

  • "Without clear visibility into present risks, the development of requirements wasn’t progressing."

  • “Implementing Black Duck has given us a single tool to manage and mitigate vulnerabilities, allowing our development, operations, and security teams to see the status of our deployments, The product is easy and straightforward to use, and we’d recommend Black Duck to anyone looking into an SCA solution.”

  • "We really want to push the envelope of security. Working with Synopsys helped us move closer to that goal."

  • At day’s end, we have assurance that there’s no red flags or potential issues—that’s the value of Black Duck audits."

  • "Within six months of Black Duck onboarding, we were able to increase our PCI compliance from 40% to 100%."

  • "What Black Duck does is put a light on open source code problems prior to release of a new version of our product. It’s helped us correct issues, plus ensure we don’t have similar issues in the future."

  • "In light of this, OPPO strives to strengthen our technological capabilities in security and privacy protection, thus enhancing user experience. Through leveraging intelligence and interconnected scenarios, we are able to strengthen our competitiveness in security and gain users’ trust. This will also ensure that OPPO has sustainable developments. [That’s why] we implemented the [Building Security in Maturity Model] (BSIMM) security assessment offered by Black Duck®.”