Skip to main content

Save or Share this Report

For Security & Risk Professionals

Vendor Landscape: Software Composition Analysis

Security, Legal, And App Dev Pros Find Common Value In Dependency Management

October 21, 2016

Primary author headshot


Why Read This Report

Software composition analysis (SCA) tools provide valuable data to security pros, legal pros, and app developers by identifying software vulnerabilities and exposing licenses for open source components. SCA tools come from a cross section of open source scanning vendors and traditional security assessment offerings, but functionality is standardizing. Security pros need to understand the landscape to choose the functionality that best fits their organization's risk management needs. This is an update of a previously published report; Forrester reviews and updates it periodically for continued relevance and accuracy.

Get Access

Already a Client?

Log in to read this document.

Become a Forrester Client

Customers are the new market-makers, reshaping industries and changing how businesses compete and win. Success depends on how well and how fast you respond. Forrester Research gives you insights and frameworks aligned to your role to shorten the time between a great idea and a great outcome, helping your teams win in the age of the customer. Contact us to learn more.

Purchase Report

This report is available for individual purchase ($2995 USD).


Table of Contents

  • Digital Businesses Rely On Software That Is Assembled, Not Built
  • Software Composition Analysis Tools Serve Multiple Concerned Parties
  • Choose An SCA Tool That Delivers The Right Value To The Right People
  • Recommendations

  • Find Common Ground Across The Organization To Reduce Risk
  • Supplemental Material
  • Related Research Documents

Recommended Research