Home » think » zervices » one-time-assessment
manageware

Open Source Assesment

We quickly find and identify open source and the related software icensing obligations, using Black Duck Software.

The result report provides fast, secure, simple and thorough analyses of your software intellectual property assets that your business, legal counsel, and engineering teams can review and immediately act on.

Our expert consultants are trained to provide the responsiveness, speed and discretion required.

Our Open Source Audit Service enables you to:

  • Discover undeclared and unknown open source and third-party software to mitigate potential legal exposure
  • Identify encryption technologies that can impact and restrict the legal export of acquired software
  • Make modifications and remediate quickly
  • Identify potential security vulnerabilities that can impact asset value

The output includes the open source project name, home page, license text, and potential conflicts from snippet matches. In addition, string searches, usage models of components, file name detections, security vulnerability mapping, and software dependencies are analyzed.

Upon completion you’ll receive a comprehensive report of external software assets including:

  • Summary of code content and risks
  • Composition of code: Open source (and other third party) components, libraries, applications
  • Source code snippets copied and pasted into code
  • Side by side comparisons of code matches
  • Licenses in effect and potential license conflicts
  • Full text of all relevant license
  • Cryptographic analysis and potential export issues (optional)
  • Analysis of security vulnerabilities associated with open source components (optional)

Code Quality Assesment

Manageware Code Quality Audit (CQA) is focused on identifying risk and Code defects that can lead to quality issues. We reduce the cost of remediating defects found in the production code and assist with the necessary steps to improve or maintain the code base.

Our experts review the code to determines if the code:

  • Is built using industry best practices
  • Show no obvious flaws, bugs or defects
  • Avoids complexity (due to poor code construction techniques) that lead to inefficient maintainability
  • Is documented well Is scalable

ALM Assessment

The first step for introducing an ALM strategy in your organisation is to assess the maturity of your development and delivery proceses. To do this efficiently and comprehensively, We have a 4-step ALM assessment process.

 

STEP 1: INTRODUCTION
STEP 2: INTERVIEWS
STEP 3: INSIGHTS
STEP 4: RECOMENDATIONS

 

  • Following areas may be assessed during the interviews:
  •  Requirements gathering
  •  Source control and configuration management
  •  Technical analysis, architecture and design
  •  Development and coding practices
  •  Deployment and operations
  •  IT Governance and reporting
  •  Technical Project Management, including task and defect tracking
  •  Development methodologies and team dynamics
  •  Testing and Quality Assurance