SAN FRANCISCO and BURLINGTON, Mass., April 3, 2013 /PRNewswire/ -- Black Duck Software, the trusted partner for open source software adoption, management and governance, and JFrog, creator of the Artifactory Repository Management Solution, today announced a partnership under which JFrog Artifactory Pro is integrated with Black Duck Suite, providing unprecedented levels of control, efficiency and visibility throughout the development lifecycle when using open source components.
JFrog's Artifactory is an advanced repository manager that helps development teams gain significant efficiencies in both the build process and in acquiring reliable open source components. The Black Duck Suite automates open source approvals, governance and compliance across the development lifecycle.
The integration between the two products offers developers an automated, non-invasive approach to the open source component approval
s process, in addition to proactively monitoring for security vulnerabilities that may be associated with specific binary components. License, security vulnerability and approval status, amongst other data, is pulled from the Black Duck Knowledgebase and delivered through Artifactory Pro, helping developers make the best component choice during the open source selection process. The broader integrated solution supports all programming languages, provides governance for both open source and 3rd-party source and binaries, and scales beyond language-specific repository management approaches to meet the needs of global, distributed enterprises.
"Our solutions were designed from the start to support all languages, binaries and source code," said Tim Yeaton, President, Black Duck. "By partnering with JFrog and integrating JFrog Artifactory with the Black Duck Suite, we provide a complete open source management solution that covers OSS components and artifacts of all languages and sizes, from snippets to binaries. No other solution offers comparable scalability, simplicity of use and comprehensive code governance. Customers can have confidence that only approved components are being used, meeting the needs of today's global, distributed enterprises."
"JFrog's suite of services provides developers with a user experience second to none, and this partnership only enhances that. An Artifactory developer-centered partnership empowered by the Black Duck KnowledgeBase is a knockout combo," said Shlomi Ben Haim, JFrog CEO. "Developers now receive 3rd party license, scanning and security vulnerability information through Artifactory during build time. This solution can be hosted locally and turns the development, release and Continuous-Integration flows into a much more efficient process. Developers can finally get managers off their backs and nothing makes us more excited! We look forward to continued collaboration with Black Duck, and will keep enriching our users with more features that promote their efficiency seamlessly."
According to Gartner Research Vice President Mark Driver, "As the use of open source binaries continues to accelerate within the enterprise, repository management solutions are becoming a core element in the devops infrastructure helping with standardization, efficiency and reliability. Integrating open source governance within this important entry point for open source components provides visibility and helps manage risk, including both IP and potential security vulnerabilities."
JFrog is the first and only vendor that provides OSS, commercial and cloud-based repository management with dedicated integration with the world's leading build tools and continuous integration servers. With more than one million users worldwide, Artifactory reached 15,000+ installed servers in 2012 and over 10,000 downloads per month. Customers include Netflix, Twitter, Oracle, EMC, Apple, LinkedIn and many more.
Developers at more than 1,000 enterprises worldwide use Black Duck to increase innovation by using approved, secure and supported open source components at scale. The Black Duck Suite provides a comprehensive, automated approach to governance and compliance that spans the software development lifecycle and scales to support thousands of developers across widely distributed teams. The Suite automates key processes including code acquisition, approval, scanning, cataloging, validation and monitoring.
The integrated solution will be available later this month in upcoming releases of both Artifactory and the Black Duck Suite.
For more information please visit: http://www.blackducksoftware.com/partner-solutions/jfrog.
About Black Duck Software
Offering award-winning software and consulting, Black Duck is the partner of choice for open source software adoption, governance and management. Enterprises of every size depend on Black Duck to harness the power of open source technologies and methods. As part of the greater OSS community, Black Duck connects developers to comprehensive OSS resources through Ohloh.net, and to the latest commentary from industry experts through the Open Source Delivers blog. Black Duck also hosts the Open Source Think Tank, an international event where thought leaders collaborate on the future of open source. Black Duck is headquartered near Boston and has offices in San Mateo, St. Louis, London, Paris, Frankfurt, Hong Kong, Tokyo, Seoul and Beijing. For more information about how to leverage open source to deliver faster innovation, greater creativity and improved efficiency, visit www.blackducksoftware.com and follow us at @black_duck_sw.
Based in Israel and California and founded by longtime field-experts, JFrog's mission is to provide better technologies and tools for software developers. JFrog has changed the way developers store and manage binaries and allows for complete control over the full software release flow. Through Artifactory, it is the first company to provide software developers with a binary repository management solution. Winner of the JavaOne Duke's Choice Award, JFrog has established itself as a technology leader in the software industry. The company continues to set the standard for solving developer pains with the launch of Bintray, deemed "the missing link in social software distribution" by peers.
SOURCE Black Duck