collect

Detect Open Source

Issues Early in the SDLC

Integrating Your IDE

Addressing security requirements or best practices during development can often slow down developers. 

 

WhiteSource’s Integrated Development Environment (IDE) Integrations, including support for IntelliJ IDEA and Eclipse, are designed to work seamlessly within the development process, enabling developers to code more productively and securely.

  • Early Visibility While Coding

    Gain immediate visibility about a component’s vulnerabilities as soon as it is added to your code

  • Effortless & Seamless Security

    Maintain an interruption-free yet security-conscious coding experience that does not mandate explicit security checks that slow down development

  • Fusion of Security & Development

    Integrate security seamlessly into the software development lifecycle, negating the need for additional tools

How does it work?

 

How Does it Work

When an open-source component is added to the pom.xml file, it is examined by the WhiteSource plugin. If the component has a known vulnerability, it is marked with a “light bulb” icon. 

 

This pane lists reported vulnerabilities associated with open source components referenced within the project’s pom.xml, including transitive dependencies.

 

Once a vulnerable component is detected, icons are displayed offering additional security information.

See why WhiteSource is named a leader in the Forrester Wave SCA Report, Q2 2019

Get Started With Your Free Trial Today

  • No installation required.
  • Unlimited reports and full access to all features.
  • Free technical support during your trial.
  • To start, we’ll contact you for a quick set up call to create your account. You’ll be able to start running immediately after.