collect

Detect Open Source

Issues Early in the SDLC

Integrate Your IDE

Addressing security requirements or best practices during development can often slow down developers. 

 

WhiteSource’s Integrated Development Environment (IDE) Integrations, including support for IntelliJ IDEA and Eclipse, are designed to work seamlessly within the development process, enabling developers to code more productively and securely.

  • Early Visibility While Coding

    Gain immediate visibility about a component’s vulnerabilities as soon as it is added to your code

  • Effortless & Seamless Security

    Maintain a security-conscious coding experience that doesn't slow down development

  • Fusion of Security & Development

    Integrate security seamlessly into the software development lifecycle

See It In Action

 

How Does it Work?

When an open-source component is added to the pom.xml file, it is examined by the WhiteSource plugin. If the component has a known vulnerability, it is marked with a “light bulb” icon. 

 

This pane lists reported vulnerabilities associated with open source components referenced within the project’s pom.xml, including transitive dependencies.

 

Once a vulnerable component is detected, icons are displayed offering additional security information.

See why WhiteSource is named a leader in the Forrester Wave SCA Report, Q2 2019

Get Started With Your Free Trial Today

  • No installation required.
  • Unlimited reports and full access to all features.
  • Free technical support during your trial.
  • To start, we’ll contact you for a quick set up call to create your account. You’ll be able to start running immediately after.