Get real-time security alerts and compliance issues on your open source dependencies within your Azure DevOps Services environment.
Important Note: You will need to purchase WhiteSource to activate the extension. If you do not have an account, you can request a free trial here.
Get the insights you need, when you need them. The extension provides full visibility of your open source components, alerts on security vulnerabilities, and compliance issues and offers actionable remediation insights in real-time. WhiteSource integrates seamlessly into your pipeline environment in a frictionless integration, without interrupting or delaying your workflow.
Detecting vulnerabilities during build process: DevOps managers get immediate visibility into open source components with risk report embedded in their pipeline environment.
Speed-up remediation: Developers save time by fixing vulnerabilities during the build. Integrating security and compliance testing pre-release allows issues to be detected earlier when they are easier and quicker to fix.
Non-intrusive integration: The seamless integration with Azure DevOps pipelines makes WhiteSource easy to use and allows DevOps managers to naturally consume WhiteSource security and compliance data without ever leaving the Azure DevOps environment or requiring additional tools.