Black Duck Partners with Google Cloud Platform
July 13, 2017

Black Duck is now a Google Cloud Technology Partner.

Through the collaboration, Google customers can use Black Duck solutions to accelerate production use of the cloud and containers as well as increase security and productivity with automated intelligence, visibility and control as they move workloads to the Google Cloud Platform (GCP).

Black Duck is releasing its flagship Black Duck Hub solution as a cloud service on Google Cloud Launcher Marketplace, enabling organizations to deploy Hub on GCP. Hub allows Google Cloud customers to scan applications and container images, identify all the open source components, detect and analyze known security vulnerabilities, compliance issues, and code-quality risks, and enable policy management to control risks and their remediation.

Additionally, Hub dynamically monitors the scanned code and provides alerts on newly discovered open source vulnerabilities or policy violations. Google customers can also use Hub to access the Black Duck KnowledgeBase, a data store of open source components and risk intelligence.

With Black Duck Hub on GCP, users can automate security and compliance as a part of their development lifecycle and continuous integration and delivery (CI/CD) pipeline, allowing DevOps and Security teams to enhance speed and agility while controlling risks.

- Black Duck Hub integration with Google Container Engine (GKE) allows users to scan and monitor container images in the Google Container Registry (GCR).

- Black Duck Hub can be used with third-party CI/CD tools on GCP, including Jenkins on Google Container Engine in a multi-node Kubernetes cluster, or with Bamboo, Team City, Maven, and Gradle.

- Black Duck’s IDE integrations allow software developers to select safe and secure open source using plug-ins to Eclipse and Visual Studio.

“For very clear economic and productivity reasons organizations are highly motivated to migrate their applications to the cloud. Because open source comprises most of the code in their applications and containers, they need to be sure the open source is secure and compliant. Black Duck Hub and Google Cloud provide that assurance,” said Black Duck CEO Lou Shipley.

Google Cloud customers can install Black Duck Hub through the Google Cloud Launcher Marketplace, allowing them to run scans directly in the Google Cloud environment.

The Latest

August 15, 2017

A common belief within DevOps circles is that automation not only enables greater frequency of delivery and deployment, but improves its overall success rate. Whenever manual intervention is required, the chances of errors creeping in increases. Human error is a significant factor in many an outage, after all ...

August 14, 2017

DevOps and NetOps are both far more generous in their opinion of the other with respect to prioritization of efforts than traditional archetypes purport them to be, and they have a lot in common – even though they may disagree on details – according to a new survey by F5 ...

August 10, 2017

Only 12 percent of organizations can claim that their whole organization is on the path to business agility even though more than two thirds of survey participants agreed that agile organizations are better able to quickly respond to dynamic business conditions, according to a new survey from CA Technologies ...

August 09, 2017

Alongside its clear benefits, DevOps brings unique challenges when developing and operating a mobile environment. Mobile app developers and development teams face a unique set of requirements relating to collaboration, testing, and release. Technology fragmentation, disparate back-end systems, updates that require user action, and poor instrumentation can impede the DevOps process and become critical roadblocks to agile mobile development, ultimately impacting app retention and the bottom line ...

August 07, 2017

A crashing app might be a deal breaker, no matter how heavy the load that an alternative website entry point can handle would be. It is all about quickly verifying compliance against key functional and non-functional requirements in order to meet aggressive release schedules as part of the Go-to-market strategy. This means positioning unit testing, UI testing, API testing, and, of course, performance and load testing — as pillars of SDLC ...

August 03, 2017

Most software developers make themselves easy targets for hackers, even when they are behind a corporate firewall, according to a new survey from Netsparker Ltd. ...

August 01, 2017

Your top priority is to improve application development agility, but you may run into roadblocks put up by a security team that (mistakenly) believes speed is the enemy of effective cybersecurity. A new survey finds a majority of enterprises are working to overcome those roadblocks by integrating security into their existing DevOps methodology ...

July 31, 2017

Agile development compresses software testing cycles, jeopardizing risk coverage and opening the door for software failures. Here's what you can do ...

July 27, 2017

While 75 percent of organizations highlight continuous testing as critical or important, only a minority of survey respondents have made exceptional progress acquiring the necessary knowledge and key enablers to drive digital transformation, according to a global study by CA Technologies ...

July 25, 2017

Test teams feel the need to adopt DevOps, but that migration is not always seamless, according to a new survey by LogiGear. That may be because 25 percent of respondents said their Ops/IT team is always helpful to the test team and its needs; 37 percent said Ops teams regularly help bring about good test environments; 27 percent said Ops can be "slow or difficult" ...

Share this