Synopsys Black Duck
Overview
Black Duck Software (now part of Synopsys) was a company that provided software composition analysis (SCA) solutions. Their primary focus was on helping organizations manage the security, compliance, and operational risks associated with open source software. Black Duck's SCA tools scanned software codebases to identify open source components, analyze their vulnerabilities, and help manage license compliance.
About Us
Black Duck, acquired by Synopsys in 2017, was a leader in software composition analysis. Their solutions allowed development and security teams to gain visibility into the open source components within their applications. This visibility enabled organizations to proactively manage security vulnerabilities, ensure license compliance, and gain operational efficiency. They were known for their comprehensive vulnerability database and sophisticated scanning technology.
Vision
To be the leading provider of software composition analysis solutions, empowering organizations to build secure and compliant software with confidence.
Mission
To enable organizations to confidently leverage open source software by providing comprehensive visibility and control over its security, compliance, and operational risks.
Culture
While operating independently, Black Duck fostered a culture of innovation and collaboration, focused on helping customers effectively manage open source risks. They emphasized expertise in software security, open source compliance, and application development. After the acquisition, this culture was integrated into Synopsys' broader commitment to software integrity.
Headquarters
Burlington, MA