What is WhiteSource?
Automatically detect all open source components in your code, while running your build
Discover the best open source components for your needs, while you search online
Get real time alerts on security risks, policy pitfalls, and software bugs
Generate comprehensive, always up to date reports on your open source usage, in one click
How Does It Work?
WhiteSource manages open source license compliance and security unlike any other solution on the market.
It integrates fully into your build process, no matter your programming languages, build tools, or development environments. It works automatically, continuously, and silently in the background, checking the security and licensing of your open source components against WhiteSource’s constantly-updated deﬁnitive database of open source repositories. You never need to halt development or expose your proprietary code.
Wondering what’s the mechanism behind it?