Skip to main content

Black Duck &
HPE Security Fortify

Securing Open Source and Custom Code

Download the Data Sheet

Comprehensive Application Security with HPE Fortify

Consolidate your application security program within a unified interface.

You build applications using a mix of custom and open source code. That makes managing security a challenge. By integrating Black Duck Hub with HPE Security Fortify Software Security Center or Fortify on Demand, the results of open source scans are loaded alongside your static and dynamic analysis testing for comprehensive visibility into both open source and custom code.

 
 

Black Duck Fortify SSC Integration

Fortify
Software Security Center

On-Premise

The results of your open source scans are loaded automatically into SSC, so you can view the results alongside your custom testing.
Black Duck Fortify On Demand Integration

Fortify
On Demand

In the Cloud

Black Duck Hub will push a complete report of all open source vulnerabilities to FoD so you can see the results within that interface.

 

Unified
View

View your open source security risk within the HPE Security Fortify interface

Advanced
Knowledge

Identify known vulnerabilities for the open source in your applications and containers

Ongoing
Monitoring

Black Duck Hub will monitor your code and alert you on newly reported vulnerabilities

Enforceable
Policies

Set policies for open source projects, license types, and vulnerability tolerance