What is WhiteSource?

"WhiteSource empowers businesses to develop better software by harnessing the power of open source."

We integrate with your CI servers, build tools and repositories to detect all open source components in your software, without ever scanning your code. It provides you with real-time alerts on vulnerable or problematic components, generates comprehensive up-to-date reports in one-click and enables you to streamline your entire open source management process with automated policies.

Get Real-Time Alerts on Security Vulnerabilities

WhiteSource will alert you in real-time whenever a vulnerable open source component is added to your build or when a vulnerability is discovered in a component already used in your software. You will also be alerted on severe software bugs, problematic licenses (according to your pre-defined policies), new versions and available fixes.

Shift Left Your Open Source Management

WhiteSource integrates with your GitHub repository and JFrog Artifactory to detect all problematic open source components as soon as they’re added, so you can find and fix issues even before you run a build.

WhiteSource also offers a browser plug-in which displays information on open source components, while you’re searching online repositories (like NuGet). This tool helps developers choose better components by displaying license information, quality rating, and security vulnerabilities, while also showing whether it meets their company’s policy before they even download it.

Automated Your Open Source Approval Process

Define your company’s open source policy to automatically approve, reject or ask for approval, on the basis of each component’s license, vulnerabilities, severe software bugs, # of newer versions and more

Generate Comprehensive Reports in One-Click

WhiteSource analyzes your open source usage every time you run your build. Therefore, in one click you can generate a full and accurate inventory report based on your last build. There is a wide range of additional automated reports like security vulnerability, software bugs, due diligence and many more. All reports can be exported and shares with other teams in your organization.


WhiteSource scored 81/100 in the Application Lifecycle Management category. This is based on user satisfaction (93/100), press buzz (39/100), recent user trends (falling), and other relevant information on WhiteSource gathered from around the web.

The score for this service has improved over the past month. What is this?

  • WhiteSource
  • WhiteSource
  • WhiteSource

WhiteSource Product Overview


Languages: English

WhiteSource Features

  • API
  • Dashboard
  • Data Export
  • Data Import
  • Data Visualization
  • External Integrations
  • File Sharing
  • File Transfer
  • Multi-App
  • Multi-Site
  • Multi-User
  • Notifications
  • Project Management
  • Bug Tracking
Compare Pricing

WhiteSource Pricing Plans

Open Source Project

Free
  • Plans include unlimited plugins and up to 3 languages

1-50 Contributing Developers

$4,000.00
1-50 Contributing Developers
  • Plans include unlimited plugins and up to 3 languages
  • 1-50 Contributing Developers $4,000-$14,000 Annually

51-200 Contributing Developers

$19,500.00
75 user(s) / year
  • Plans include unlimited plugins and up to 3 languages.
  • 51-200 Contributing Developers $19,500-$47,000 Annually
  • Plans include unlimited plugins and up to 3 languages.

201-500 Contributing Developers

$57,000.00
100 user(s) / year
  • Plans include unlimited plugins and up to 3 languages.
  • 201-500 Contributing Developers $57,000-$107,000 Annually
  • Plans include unlimited plugins and up to 3 languages.

Plans starting from: $333.00/month Credit card required: N/A
on
Page last modified:

WhiteSource User Reviews

No reviews yet. Rate this app or be the first to review!
Back to top