Shift Security Left with the Sonatype Platform Browser Extension - Scan Open Source Repositories for known Vulnerabilities.
Total ratings
5.00
(Rating count:
12)
Review summary
Pros
- Helps identify high-risk security vulnerabilities in OSS components before downloading
- Provides insights into security and legal implications of components
- Facilitates early decision-making in the software development lifecycle (SDLC)
- Useful for researching open source components being considered for applications
Cons
Most mentioned
- Useful plugin for analyzing OSS components
- Prevents mistakes early in the SDLC
- Supports shifting left approach in development
Upgrade to see all 16 reviews
User reviews
Recent rating average:
5.00
All time rating average:
5.00
Upgrade to see all 16 reviews
Rating filters
5 star 4 star
3 star
2 star
1 star
Date | Author | Rating | Lang | Comment |
---|---|---|---|---|
2024-05-09 | Chris Wolters | en | I use this all the time. As developers are initially considering which component to use in their application, they get information while looking at the component in the OSS repository without doing anything. Awesome for shifting left selecting the best component rather than remediating downstream! | |
2023-08-16 | Neil Schloth | A great tool for analyzing OSS components on the web for high-risk security vulnerabilities prior to downloading for use. Prevent mistakes early on in the SDLC by alerting on insecure packages before they are built in to application code. | ||
2023-08-16 | Neil Schloth | en | A great tool for analyzing OSS components on the web for high-risk security vulnerabilities prior to downloading for use. Prevent mistakes early on in the SDLC by alerting on insecure packages before they are built in to application code. | |
2023-08-10 | Roy Decker | An awesome solution for researching open source components that are being considered for an application. | ||
2023-08-10 | Royal Decker | en | An awesome solution for researching open source components that are being considered for an application. | |
2023-07-14 | Ben Hartley | The ultimate in shifting left! | ||
2023-07-14 | Ben Hartley | en | The ultimate in shifting left! | |
2023-07-14 | Patrick Kiessling | Nice! | ||
2023-07-14 | Patrick Kiessling | en | Nice! | |
2023-07-14 | Paul Meharg | I find this very useful to get a preview of the security and legal implications of acomponent before I start to write code! Keeps me from creating technical debt from the git-go. |
Upgrade to see all 16 reviews