Checkmarx, a global leader in application security testing and WhiteSource, the continuous open source component management solution, today announced a partnership, providing Checkmarx users with a comprehensive Open Source Analysis (OSA) solution. The new capability adds full visibility of the open source components used by developers. It reports known security vulnerabilities contained in the open source code and suggests available fixes. It also highlights licensing and compliance issues in any used open source components.
The new version of Checkmarx’s application security testing platform combines best-of-breed source code analysis and open source component analysis in a single product. Checkmarx’s platform is the only one to provide a comprehensive solution that covers all code security aspects in all major coding languages and is available both on-premise and on-demand.
“Checkmarx is delighted to be working with WhiteSource to offer a complete solution for our users. We both share the same approach of creating solutions developers actually want to use,” said Emmanuel Benzaquen, CEO of Checkmarx. “Checkmarx’s platform fits seamlessly with the Software Development Lifecycle to discover issues and vulnerabilities in the code. The new capability adds Open Source Analysis (OSA) to our current proprietary code analysis and ensures such vulnerabilities are detected before they are released into production”.
Checkmarx customers can now benefit from the strengths of both companies with a single Application Security Testing platform scanning both proprietary and open source code to maximize developer adoption by seamlessly integrating into the development lifecycle.
“In an age when companies are heavily using open source components, it is no longer sufficient to just scan one’s own code. OWASP A9 requirement emphasizes this issue.” said Rami Sass, CEO and Co-Founder of WhiteSource. “The addition of WhiteSource’s technology makes the Checkmarx solution complete, providing customers with full coverage in a single product”.