Synopsys Black Duck®

If you use Synopsys Black Duck® as your SCA tool, you can easily integrate it with Deepfactor.

Once integrated, Deepfactor will retrieve vulnerabilities for the observed dependencies using Black Duck® APIs. 

Black_Duck_integration_dependencies-_dependencies.png

Showing_vulnerabilities_for_spring_core.png

Please follow the below steps to integrate Deepfactor with Black Duck.

1. Login to your Synopsys Black Duck® server. Click on the 'System' dropdown and navigate to the 'My Access Tokens' page. 

2. Click on 'Create a New Token.' Please provide a name and description and check 'Read Access.' Copy the generated access token. 

Screenshot_2021-12-06_at_10.43.13_AM.png

3. Login to your Deepfactor portal. Navigate to 'Integrations' from the top header menu.

4. Navigate to 'Software Composition Analysis' from the left sidebar menu.

integrations_SCA.png5. Click on 'Configure Blackduck' and enter your Black Duck server URL and API Token.

configure_Blackduck.png
6. Click 'Save.' 
 
After successful integration, Deepfactor will retrieve vulnerabilities from Black Duck for future instances launched with Deepfactor. Existing alerts for previous instances of your components will continue to show vulnerabilities retrieved from NVD.
 
Black_Duck_integration_dependencies-_vulnerabilities.png
 
 
 
Was this article helpful?
0 out of 0 found this helpful

Comments

0 comments

Please sign in to leave a comment.