--- description: Reviews zu Mend Software: Systemübersicht, Funktionen, Preisinformationen und Ratings & Reviews. Entdecke kostenlose Live-Demos und vergleiche Mend mit ähnlichen Programmen. image: https://gdm-localsites-assets-gfprod.imgix.net/images/software_advice/og_logo-55146305bbe7b450bea05c18e9be9c9a.png title: Mend | Bewertungen, Preise und Demos – SoftwareAdvice DE --- Breadcrumb: [Startseite](/) > [Container-Sicherheitssoftware](/directory/4438/container-security/software) > [Mend](/software/161968/whitesource) # Mend Canonical: https://www.softwareadvice.de/software/161968/whitesource Seite: 1 / 2\ Weiter: [Nächste Seite](https://www.softwareadvice.de/software/161968/whitesource?page=2) > WhiteSource ist eine Lösung für agiles Open-Source-Sicherheits- und Lizenz-Compliance-Management. Die Lösung lässt sich in deine Entwicklungsumgebungen und DevOps-Pipeline integrieren, um Open-Source-Bibliotheken mit Sicherheits- oder Compliance-Problemen in Echtzeit zu erkennen. WhiteSource warnt nicht nur bei Problemen, sondern bietet auch umsetzbare, validierte Korrekturpfade, um eine schnelle Lösung und automatisierte Richtliniendurchsetzung zu ermöglichen und die Zeit bis zur Fehlerbehebung zu beschleunigen. Die Lösung hilft dir auch, dich auf wichtige Themen zu konzentrieren, indem sie die Fehlerbehebung basierend darauf priorisiert, ob dein Code tatsächlich eine anfällige Methode verwendet oder nicht, und garantiert keine Fehlalarme erzeugt. WhiteSource bietet Unterstützung für über 200 Programmiersprachen und die kontinuierliche Verfolgung mehrerer Open-Source-Schwachstellendatenbanken, einschließlich der NVD, Sicherheitshinweisen, Peer-Review-Wissensdatenbanken für Schwachstellen und Issue-Tracker von Open-Source-Projekten. > > Bewertung: **4.4/5** von 8 Nutzern. Top bewertet für **Weiterempfehlungsquote**. ----- ## Kurzstatistiken und Ratings | Metrik | Bewertung | Detail | | **Gesamt** | **4.4/5** | 8 Nutzerbewertungen | | Bedienkomfort | 4.2/5 | Auf Basis der Gesamtbewertungen | | Kundenbetreuung | 4.3/5 | Auf Basis der Gesamtbewertungen | | Preis-Leistungs-Verhältnis | 4.0/5 | Auf Basis der Gesamtbewertungen | | Funktionen | 3.8/5 | Auf Basis der Gesamtbewertungen | | Empfehlungsprozentsatz | 70% | (7/10 Weiterempfehlungsquote) | ## Über den Anbieter - **Unternehmen**: WhiteSource Software - **Gegründet**: 2010 ## Gewerblicher Kontext - **Startpreis**: 4.000,00 $ - **Preismodell**: (Kostenlose Version verfügbar) (Kostenlose Testversion) - **Zielgruppe**: 2–10, 11–50, 51–200, 201–500, 501–1.000, 1.001–5.000, 5.001–10.000, 10.000+ - **Bereitstellungen und Plattformen**: Cloud, SaaS, webbasiert, Mac (Desktop), Windows (Desktop), Linux (Desktop), Android (mobil) - **Unterstützte Sprachen**: Deutsch, Englisch, Französisch, Hebräisch - **Verfügbare Länder**: Australien, China, Deutschland, Indien, Israel, Japan, Kanada, Vereinigte Staaten, Vereinigtes Königreich ## Funktionen - API - Alarmfunktion / Benachrichtigungen - Anwendungssicherheit - Berichterstattung / Analyse - Compliance Management - Compliance-Verfolgung - Container-Scans - Continuous Integration - Dashboard - Einsatz-Management - Endpoint Protection - Genehmigungs-Workflow - Grafische Benutzeroberfläche - Korrektur-Management - Lizenz-Nachverfolgung - Lizenzbestand - Mobile Entwicklung - Priorisierung - Problemmanagement - Produktaktivierung ## Integrationen (9 insgesamt) - Bitbucket - CircleCI - Cloudbees CI - Docker - GitHub - GitLab - Jira - Microsoft Azure - Travis CI ## Optionen für Kundensupport - FAQ/Forum - Wissensdatenbank - Telefon-Support ## Category - [Container-Sicherheitssoftware](https://www.softwareadvice.de/directory/4438/container-security/software) ## Ähnliche Kategorien - [Container-Sicherheitssoftware](https://www.softwareadvice.de/directory/4438/container-security/software) - [Programmiersoftware](https://www.softwareadvice.de/directory/4499/app-development/software) - [Lizenzmanagement Software](https://www.softwareadvice.de/directory/4637/license-management/software) - [Sicherheitssoftware](https://www.softwareadvice.de/directory/4643/cybersecurity/software) - [Verschlüsselungssoftware](https://www.softwareadvice.de/directory/4659/encryption/software) ## Alternativen 1. [Cloudflare](https://www.softwareadvice.de/software/129886/cloudflare) — 4.7/5 (515 reviews) 2. [AVG Antivirus Business Edition](https://www.softwareadvice.de/software/194104/avg-antivirus-business-edition) — 4.3/5 (2145 reviews) 3. [ESET Endpoint Security](https://www.softwareadvice.de/software/134149/eset-endpoint-security) — 4.7/5 (1169 reviews) 4. [SentinelOne](https://www.softwareadvice.de/software/363019/sentinelone) — 4.8/5 (109 reviews) 5. [Google Cloud](https://www.softwareadvice.de/software/172144/google-cloud-platform) — 4.7/5 (2262 reviews) ## Nutzerbewertungen ### "Good supplement to other SAST tools for "shift left" security." — 4.0/5 > **Mo** | *7. Dezember 2022* | Rechtsberatung | Empfehlungsbewertung: 8.0/10 > > **Vorteile**: Easy integration with Azure DevOps and Mend for Github and the fact that you can run as a task during the pipeline but you don't have to see the output from a CLI since they provide a tab on the pipeline run to see a good report on used libraries and vulnerabilities. > > **Nachteile**: Other tools have auto fixing which is not a need but good to have. Auto-fixing is not always "auto" and might need review which doesn't make it a big con. ----- ### "Best Unified solution for SCA,SAST & Container on the market." — 5.0/5 > **Sonal** | *25. Juni 2025* | Logistik & Lieferkette | Empfehlungsbewertung: 10.0/10 > > **Vorteile**: Best Open Source analysis with their In-house and other multiple sources of software vulnerabilities giving you value for money for your subscription. Also one of the few companies in the market which will give you license \& policy violations alert as well. Pipeline integration of this tools is greatly helpful for the software which are shipped out securely \& safely. > > **Nachteile**: Mend SAST tool gives remediation as a general one or two liners, they are pointing as to where the issue is present, but also need to provide detailed fix for SAST issues. > > Overall a good experience working with WhiteSource team, even their Technical Accounts Manager (TAM) was able to troubleshoot issues on the call. It's better to keep a bi-weekly cadence with them as they do provide hands-on approach to issues raised and helps us in resolving any integration problems. ----- ### "Tons of false positives, prepare to spend hours fixing it manually" — 2.0/5 > **Don** | *7. Juni 2018* | Empfehlungsbewertung: 1.0/10 > > **Vorteile**: Fast, quick reviews of your code. They do a good job of putting all the relevant reports and dashboards in front of you quickly. Once you manually fix everything, it can look really good. > > **Nachteile**: The false positives are awful. I had to spend hours and hours manually fixing everything it mis-identified - dozens of libraries and thousands of source files. If you use a library not in its database... too bad. You can make a support request and wait for them to enter it for you, whenever they get around to it. The search is pretty awful. There is some kind of syntax to using it but when I asked our account rep, she couldn't give me any documentation on it. You will frequently see results like "openssl-v0\_9\_8" in your search, but if you type "openssl" it will vanish and not come up. Don't ever both trying to search for a version, it doesn't work. This results in a lot of time scrolling through very large lists. Naming schemes are random and follow no established pattern. For a good half of all libraries, they have not assigned a license. Guess who gets to go google search them all? You, the user\! Isn't the point of this tool to help me identify the licensing? UI navigation is challenging. Back button will take you to a different place than you were almost every time. You'll love the dashboard... because you have to go back to it roughly every 5 minutes and start over. No great system for notes/todos/reminders. When you have to fix 60 libraries, it's hard to remember what you want to do with each one. > > After much manual configuration, a nicely formatted output that looks reputable. I could have just made my own in excel a lot faster. ----- ### "WhiteSource Review" — 5.0/5 > **Elyes** | *7. Dezember 2021* | Informationstechnologie & -dienste | Empfehlungsbewertung: 8.0/10 > > **Vorteile**: WhiteSource give you the ability to scan open source packages within your source code. The ability to integrate it with Azure pipelines is a huge plus > > **Nachteile**: Duplicated result for same packages and within the same project ----- ### "FOSS lifecycle management with Whitesource" — 5.0/5 > **Udi** | *10. November 2015* > > Using Whitesource to manage the process of analysing FOSS for a large product with hundreds of opensource dependencies. Makes life much easier and helps you cover all dependencies much more accurately. Some processes are still a bit course (though improved dramatically over the past 18 months) Refresh performance might be a bit slow when there are very large dependency lists. Best product out there for FOSS lifecycle management ----- Seite: 1 / 2\ Weiter: [Nächste Seite](https://www.softwareadvice.de/software/161968/whitesource?page=2) ## Links - [Auf SoftwareAdvice anzeigen](https://www.softwareadvice.de/software/161968/whitesource) ## Diese Seite ist in den folgenden Sprachen verfügbar | Sprache | URL | | de | | | en | | | en-AU | | | en-GB | | | en-IE | | | en-NZ | | ----- ## Strukturierte Daten