WhiteSource’s New Selection Tool Helps Developers Choose Better Open Source Components

Browser Plug-In Enables Developers to Identify Issues in Open Source Components While Browsing in Maven Central, PyPI and more

[Tel Aviv, Israel – June 7, 2016] – WhiteSource, the continuous open source components management solution, today announced the launch of their first-to-market Selection Tool enabling developers to identify vulnerable or problematic open source components at the early stages of coding. The browser plug-in allows developers to see full information about specific libraries they wish to use in their organization and check if the components meet their company’s open source policies.

“Open source is a vital part of nearly every enterprise software, but the tools for managing and fully utilizing open source components are only just catching up” said Rami Sass, CEO and Co-Founder of WhiteSource. “WhiteSource’s new Selection Tool saves developers time as it allows developers to quickly and easily check the security and quality of open source components in real-time, without the need to leave their browser window”.

The Selection Tool is a browser plug-in that detects a viewed component in a web repository, based on the URL, and cross reference it with WhiteSource’s database and the company’s open source inventory to provide all relevant information to help a developer decide whether they should choose the component or not. The Selection Tool enables developers to know in real-time if the component has security, licensing or quality issues, and if the component is going to pass the organizational policy, or is already in use.

Gartner estimate that in 2015 at least 95% of mainstream IT organizations leveraged open source solutions within mission critical software deployments. This rapid growth in open source increases the need for tools to help developers working with open source components. WhiteSource’s Selection Tool enables developers to quickly make smart decisions about the security and the quality of components before introducing them into tightly guarded company projects thus saving the developers time and effort.