MergeBase Recognized in Gartner®’s Market Guide for Software Composition Analysis (SCA)

“Growing risks and ubiquitous use of open-source software in development make software composition analysis essential to application security. Security and risk management leaders must expand the scope of tools to include detection of malicious code, operational and supply chain risks.”

MergeBase SCA manages vulnerabilities, license risk and technical debt in your libraries during coding, building, deployment and running of your applications. It provides developer guidance based on risk, compatibility and popularity. It triggers warnings about vulnerabilities applications running in production including from third-party components and third-party software.

MergeBase Security graphic

Gartner, Market Guide for Software Composition Analysis, Dale Gardner, Joerg Fritsch, 14 September 2021
Gartner is a registered trademark of Gartner, Inc. and/or its affiliates in the U.S. and internationally and is used herein with permission. All rights reserved.
Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.