Advanced Search

Save or Share this Report

For Security & Risk Professionals

The Forrester Wave™: Software Composition Analysis, Q1 2017

The Six Providers That Matter Most And How They Stack Up

February 23, 2017

Primary author headshot

Authors

Why Read This Report

In our 38-criteria evaluation of software composition analysis (SCA) providers, we identified the six most significant ones — Black Duck Software, Flexera Software, Sonatype, Synopsys, Veracode, and WhiteSource Software — and researched, analyzed, and scored them. This report shows how each provider measures up and helps security professionals make the right choice for their organization.

Get Access

Already a Client?

Log in to read this document.

Become a Forrester Client

Customers are the new market-makers, reshaping industries and changing how businesses compete and win. Success depends on how well and how fast you respond. Forrester Research gives you insights and frameworks aligned to your role to shorten the time between a great idea and a great outcome, helping your teams win in the age of the customer. Contact us to learn more.

Purchase Report

This report is available for individual purchase ($2495 USD).

Purchase

Tools And Templates

Vendor Selection Aids

vendor selection icon
  • Forrester Wave™: Software Composition Analysis, Q1 '17

Table of Contents

  • Open Source Risks Demand An Automated Solution
  • Software Composition Analysis Evaluation Overview
  • Vendor Profiles
  • Supplemental Material
  • Related Research Documents

Recommended Research