We give you peace of mind, working with Open Source

 

Protex
Black Duck Software's Protex solution helps you to Know Your Code"™".

Protex is an automated software compliance management system that is used by
companies of all sizes and industries to monitor the use of open source and third
party components in a hybrid development environment. Hybrid development
presents challenges in coping with the vast and often conflicting licensing obligations
found in hundreds of different open source and other software
licenses associated with the various software components used. Many different functions within the organization may be involved in the legal and technical approval process - development, CTO, IP managers, legal, management - leading to a bottleneck.

The first step in managing these requirements is creating a list of components that have been included into your project. Manual methods for recording use of components can only work on a very low scale. Automated tools are needed to scan for code that has been embedded in your product by developers, outsourcers or freelancers during the development cycle.  Early detection of open source components is key to quick resolution of licensing issues, saves time and expense of later re-writes and eases the process of due diligence.

Protex scans can be run manually, but are generally run automatically as part of the nightly build process. Your code is scanned and compared against “code prints” of  hundreds of thousands open source components contained in the Black Duck Knowledgebase. Once the source of the component has been identified, Protex compares the component's license against your software license as well  as with licenses of other components within your project - the Knowledgebase contains information on over 1,400 uniques licenses. Protex then highlights licensing conflicts that must be resolved.

Using Protex you can create a custom database to track use of internally developed or purchased components. Protex provides a utility that allows you to “code print” these components into the system so that it can recognize them, as well.

Protex creates a Bill of Materials of all components that have been integrated into your project so you can track the approval of components as well as the resolution of non-approved components.

Read more about Black Duck Protex >>>

Download the Protex product brochure >>>

Download the Black Duck Whitepaper: Software Compliance Management >>>

Solutions/Partners

Black Duck - Black Duck Suite - Protex - Export - Transact - Code Center Open Logic - Support - Provisioning & Governance - Certified Library