Skip to main content

Automate Open Source Selection and Governance

Download the Data Sheet

Black Duck® Code Center™

Black Duck Code Center is the leading platform for open source governance, helping you leverage the power of open source in your software projects. Using open source, along with third-party and custom code, speeds application development, but if not managed properly, it can also introduce significant legal, operational and security risks.

Robust open source policies and procedures are important, but without automation tools, rules and regulations can bog developers down and prevent them from meeting project deadlines.

Are you in control of your open source?

Black Duck automates open source governance and compliance to speed development, reduce costs, and ensure code security & quality





Code Center Governance Framework

Code Center empowers your team to collaborate while automating key governance processes:

  • Find and select open source software
  • Request and get approval for code use
  • Inventory software for reuse and standardization
  • Access license, community activity and vulnerability information for any open source component

Code Center is highly scalable and can support development teams of any size, whether co-located or geographically distributed. It can be deployed on premises or as software as a service (SaaS).

  • With the Black Duck we found the right solution to execute our open source governance policy by providing a scalable and transparent approval process.

    - Janaka Bohr, Head of Global Licensing, SAP

Key Features

  • Configurable and automated approval workflow, streamlining the governance process at all stages of development.
  • Deep License Data™ showing all license information, not just the declared license, allowing developers to make more informed component choices early in the SDLC
  • Catalog of approved components allows you to track where components are used in other applications, facilitating standardization and reuse
  • Component data includes associated metadata from, enabling more informed component choices, including the ability to analyze component risk factors
  • Integration with your existing IDEs, build and continuous integration (CI) tools, reporting and repository-management systems.

The Most Comprehensive Open Source KnowledgeBase

The Black Duck® KnowledgeBase™ is the industry’s most comprehensive database of open source project information. It includes over ten years' worth of data, more than 1 million software projects from more than 8,500 sites, and detailed data for more than 2,400 unique licenses, including vulnerabilities, full license text and dozens of encoded attributes and obligations for each license. New open source project versions and metadata are continually added in to the KnowledgeBase.